| VID |
16016 |
| Severity |
20 |
| Port |
21 |
| Protocol |
TCP |
| Class |
FTP |
| Detailed Description |
It is possible to gather the real path of the public area of the ftp server (like /home/ftp) by issuing the following command :
CWD
This problem may help an attacker to find where to put a .rhost file using other security flaws. |
| Recommendation |
These flaws remain in many anonymous ftp server. Inform your vendor, and ask for an workaround. |
| Related URL |
CVE-1999-0201 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
203 (ISS) |
|
