Bugtraq mailing list archives

ftp.pl vulnerability

From: @ (zillion @ safemode)
Date: Wed, 12 Jul 2000 21:56:58 +0200


Feartech ftp browser problem

From the creators page ( http://www.feartech.com/vv/ftp.shtml )


-- snip --

FTP Browser allows you to display a html enhanced directory listing,
which is great for managing your ftp files. FTP
Browser can do all of the following:

-- snip --

But wait.. it can do more than just that :

http://www.server.com/cgi-bin/ftp/ftp.pl?dir=../../../../../../etc

The vedor has been notified a week ago but has released no fix or update

This ain't something huge but the script is offered on various script
archives.

zillion

site: http://www.safemode.org
email: zillion () safemode org

Current thread:

Pollit CGI-script opens doors! The Warlock (Jul 11)
- Logdaemon ftpd and setproctitle() Wietse Venema (Jul 10)
- Re: Pollit CGI-script opens doors! jerry (Jul 11)
- REMOTE EXPLOIT IN ALL CURRENT VERSIONS OF BIG BROTHER Eric Hines (Jul 11)
  - Re: REMOTE EXPLOIT IN ALL CURRENT VERSIONS OF BIG BROTHER Andrew L . Davis (Jul 11)
  - Updated - Microsoft Security Bulletin (MS00-041) Microsoft Product Security (Jul 12)
  - Netscape SmartDownload reports file information to AOL John L. Morello (Jul 12)
  - RSA Aceserver UDP Flood Vulnerability Gwendolynn ferch Elydyr (Jul 12)
  - ftp.pl vulnerability zillion @ safemode (Jul 12)
  - ISC DHCP client v2 hole fixed...or not? Pavel Kankovsky (Jul 12)
  - cvsweb: remote shell for cvs committers Joey Hess (Jul 12)
  - FreeBSD Security Advisory: FreeBSD-SA-00:33.kerberosIV FreeBSD Security Advisories (Jul 12)
  - eEye Digital Security ports nmap to Windows NT Marc (Jul 13)
  - Lame DoS in WEBactive win65/NT server Prizm (Jul 13)
  - Security Bulletins Digest patrick () PINE NL (Jul 13)
  - More wIRCSrv stupidity Drew (Jul 13)
    - Re: More wIRCSrv stupidity Alex Charalabidis (Jul 13)
    - MDKSA-2000:019 cvsweb update Linux Mandrake Security Team (Jul 14)
- BIG BROTHER EXPLOIT Eric Hines (Jul 11)

(Thread continues...)