Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

FtpLocate Multiple Scripts fsite Parameter Remote File Inclusion

High

Synopsis

The remote host is vulnerable to an flaw that allows attackers to execute arbitrary commands

Description

The remote host is running FtpLocate, a web search engine for FTP sites written in Perl.

The installed version of FtpLocate allows remote attackers to execute commands on the remote host by manipulating input to the 'fsite' parameter in various scripts.

Solution

No solution is known at this time.