| VID |
16149 |
| Severity |
40 |
| Port |
21, ... |
| Protocol |
TCP |
| Class |
FTP |
| Detailed Description |
According to its banner, the version of ProFTPD installed on the remote host is earlier than 1.3.5a or 1.3.6rc1. The remote host is running a version of ProFTPD that is affected by an information disclosure vulnerability in the mod_copy module due to the SITE CPFR and SITE CPTO commands being available to unauthenticated clients. An unauthenticated, remote attacker can exploit this flaw to read and write to arbitrary files on any web accessible path on the host.
* Note: This check solely relied on the banner of the remote FTP server to assess this vulnerability, so this might be a false positive.
* References:
http://bugs.proftpd.org/show_bug.cgi?id=4169
* Platforms Affected:
ProFTPD Project, ProFTPD versions prior to 1.3.5a / 1.3.6rc1
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of ProFTPD (1.3.5a / 1.3.6rc1 or later), available from the ProFTPD Web site at http://www.proftpd.org/ |
| Related URL |
CVE-2015-3306 (CVE) |
| Related URL |
74238 (SecurityFocus) |
| Related URL |
(ISS) |
|
