icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

SunFTP Directory Traversal / Overflow

High

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote FTP server (SunFTP) allows a remote attacker to read arbitrary files on the remote host by adding a double dot in front of their name. In addition to this, it is vulnerable to a buffer overflow which may allow an attacker to execute arbitrary commands on the remote host.

Solution

The product has been discontinued by the vendor.