Titan FTP Server quote stat Command Traversal Arbitrary Directory Listing

medium Nessus Plugin ID 14659

Synopsis

The remote FTP server has a directory traversal vulnerability.

Description

According to its banner, the version of Titan FTP Server running on the remote host has a directory traversal vulnerability. A remote attacker could exploit this to view arbitrary files on the system.

Solution

Upgrade to Titan FTP NextGen 2.0.6 or later.

See Also

http://www.nessus.org/u?f82b50d3

Plugin Details

Severity: Medium

ID: 14659

File Name: titan_ftp_dir_traversal.nasl

Version: 1.18

Type: remote

Family: FTP

Published: 9/3/2004

Updated: 7/26/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2014-1842

Vulnerability Information

CPE: cpe:/a:south_river_technologies:titan_ftp_server

Vulnerability Publication Date: 5/29/2003

Reference Information

CVE: CVE-2014-1842

Secunia: 8914