header-logo
Suggest Exploit
vendor:
PlatinumFTPserver
by:
Unknown
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: PlatinumFTPserver
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: a:platinumftpserversoftware:platinumftpserver
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

PlatinumFTPserver Directory Traversal Vulnerability

PlatinumFTPserver fails to properly sanitize some FTP commands, allowing a remote attacker to obtain information about sensitive resources located outside of the FTP root.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/6492/info

It has been reported that PlatinumFTPserver fails to properly sanitize some FTP commands. By sending a malicious request to the vulnerable server, using directory traversal sequences, it is possible for a remote attacker to obtain information about sensitive resources located outside of the FTP root.

Disclosure of sensitive system files may aid the attacker in launching further attacks against the target system. 

dir ..\..\..\..\

Navigation

Suggest Exploit

Services By CQR