War FTP Daemon < 1.67b5 Traversal Arbitrary Directory Access
Medium Nessus Network Monitor Plugin ID 1831
SynopsisThe remote host is vulnerable to a flaw which allows attackers to retrieve sensitive files or data.
DescriptionThe version of WarFTPd running on this host contains a vulnerability that may allow a potential intruder to gain read access to directories and files outside of the ftp root. By sending a specially crafted 'dir' command, the server may disclose an arbitrary directory.
SolutionUpgrade to version 1.67b5 or higher.