Farmers WIFE FTP Server Multiple Command Traversal Arbitrary File Creation

This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.

Synopsis :

The remote ftp server is affected by a directory traversal flaw.

Description :

The remote host appears to be running Farmers WIFE, a commercial
facilities, scheduling, and asset management package targeted at the
media industry.

The version of Farmers WIFE installed on the remote host includes an
FTP server that reportedly is vulnerable to directory traversal
attacks. A user can leverage this issue to read and write to files
outside the ftp root. Note that the application runs with SYSTEM
privileges under Windows.

See also :

Solution :

Upgrade to Farmers WIFE 4.4 SP3 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 5.0
Public Exploit Available : true

Family: FTP

Nessus Plugin ID: 20754 (farmerswife_ftp_dir_traversal.nasl)

Bugtraq ID: 16321

CVE ID: CVE-2006-0319

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now