| Ãë¾àÁ¡ID |
16020 |
| À§Çèµµ |
20 |
| Æ÷Æ® |
21 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
FTP |
| »ó¼¼¼³¸í |
FTP ¼¹ö¿¡ ·Î±×ÀÎÇÏÁö ¾Ê°í CWD ~<»ç¿ëÀÚ¸í> ¸í·ÉÀ» ¼öÇà½Ãų ¶§ FTP ¼¹ö»ó¿¡ ÀÖ´Â »ç¿ëÀÚÀÇ Á¸ÀçÀ¯¹«¸¦ È®ÀÎÇÒ ¼ö ÀÖ´Ù.
¿¹:
telnet target 21
CWD ~root
530 Please login with USER and PASS.
CWD ~nonexistinguser
530 Please login with USER and PASS.
550 Unknown user name after ~
À̸¦ ÅëÇØ Attacker´Â guest¿Í °°Àº Ãë¾àÇÑ °èÁ¤µéÀÌ ÀÖ´ÂÁö¸¦ È®ÀÎÇÒ ¼öµµ ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://www.securityspace.com/smysecure/catid.html?id=10653
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Microsoft Windows Any version
Linux Any version
Unix Any version
FTP ¸ðµç ¹öÀü |
| ÇØ°áÃ¥ |
º¥´õ¿¡ ¹®ÀÇÇÏ¿© Patch¸¦ Çϰųª FTP ¼¹ö¸¦ ´Ù¸¥ °ÍÀ¸·Î ±³Ã¼ÇÑ´Ù. |
| °ü·Ã URL |
CVE-2001-0421 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
