header-logo
Suggest Exploit
vendor:
iFTPStorage
by:
_x3l
8,8
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: iFTPStorage
Affected Version From: 1.0
Affected Version To: 1.3
Patch Exists: YES
Related CWE: CVE-2010-4456
CPE: a:gahor_krisztian:iftpstorage
Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2010-0110/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-4456/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: iPhone, iPod touch
2010

iFTPStorage for iPhone / iPod touch <= 1.3 - Directory Traversal

There is directory traversal vulnerability in the iFTPStorage. You can download all file from the iPhone when you connected to the ftp server. For example: GET ../../../../../../etc/passwd

Mitigation:

Upgrade to version 1.4
Source

Exploit-DB raw data:

#############################################
###    					  ###
##		     _x3l		   ##
#	http://gahor-krisztian.hu/xel	    #
##	    xel@gahor-krisztian.hu	   ##
###					  ###
#############################################


# Exploit: iFTPStorage for iPhone / iPod touch <= 1.3 - Directory Traversal
# Date: 02/12/2010
# Author: _x3l
# Software Link: http://itunes.apple.com/us/app/iftpstorage/id333357690?mt=8
# Version: 1.3
# Tested on: iPhone 3GS with 4.2.1 firmware

There is directory traversal vulnerability in the iFTPStorage.
You can download all file from the iPhone when you connected to the ftp server.
	For example: GET ../../../../../../etc/passwd

Navigation

Suggest Exploit

Services By CQR