header-logo
Suggest Exploit
vendor:
WS_FTP Server Manager
by:
SecurityFocus
7.5
CVSS
HIGH
Authentication-Bypass and Information-Disclosure
287, 200
CWE
Product Name: WS_FTP Server Manager
Affected Version From: 6.1.0.0
Affected Version To: 6.1.0.0
Patch Exists: Yes
Related CWE: N/A
CPE: a:ipswitch:ws_ftp_server_manager
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2007

WS_FTP Server Manager Authentication-Bypass and Information-Disclosure Vulnerabilities

WS_FTP Server Manager is prone to an authentication-bypass vulnerability and an information-disclosure vulnerability. An attacker can exploit these issues to gain unauthorized access to the affected application and gain access to potentially sensitive information.

Mitigation:

Users should upgrade to the latest version of WS_FTP Server Manager.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/27654/info

WS_FTP Server Manager is prone to an authentication-bypass vulnerability and an information-disclosure vulnerability.

An attacker can exploit these issues to gain unauthorized access to the affected application and gain access to potentially sensitive information.

These issues affect WS_FTP Server Manager 6.1.0.0; prior versions may also be affected. 

http://www.example.com/WSFTPSVR/FTPLogServer/LogViewer.asp

Navigation

Suggest Exploit

Services By CQR