Serv-U CD Command Encoded Traversal Arbitrary File/Directory Access

medium Nessus Plugin ID 10565

Synopsis

The remote FTP server is affected by a directory traversal vulnerability.

Description

The remote host is running Serv-U FTP server. The installed version fails to properly sanitize user-supplied input to the 'cd' command. An attacker could exploit this flaw to access arbitrary files on the remote host.

Solution

Upgrade to Serv-U 2.5i or later.

See Also

https://seclists.org/bugtraq/2000/Dec/79

Plugin Details

Severity: Medium

ID: 10565

File Name: ftp_servu_traversal.nasl

Version: 1.40

Type: remote

Family: FTP

Published: 12/6/2000

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:serv-u:serv-u

Required KB Items: ftp/servu, ftp/anonymous

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 12/5/2000

Reference Information

CVE: CVE-2001-0054

BID: 2052