source: http://www.securityfocus.com/bid/29846/info
Classic FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue allows an attacker to write arbitrary files to locations outside of the application's current directory. This could help the attacker launch further attacks.
Classic FTP 1.02 for Microsoft Windows is vulnerable; other versions may also be affected.
Response to LIST:
\..\..\..\..\..\..\..\..\..\testfile.txt\r\n
/../../../../../../../../../testfile.txt\r\n
{"hash": "2f194cd7f135e6d89c08bea5b9f1097cba31135c4f8b06e542953706cb5fb5ae", "id": "EDB-ID:31942", "lastseen": "2016-02-03T15:50:05", "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "bulletinFamily": "exploit", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "edition": 1, "history": [], "type": "exploitdb", "sourceHref": "https://www.exploit-db.com/download/31942/", "description": "Classic FTP 1.02 'LIST' Command Directory Traversal Vulnerability. CVE-2008-2894. Remote exploits for multiple platform", "title": "Classic FTP 1.02 - 'LIST' Command Directory Traversal Vulnerability", "sourceData": "source: http://www.securityfocus.com/bid/29846/info\r\n\r\nClassic FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.\r\n\r\nExploiting this issue allows an attacker to write arbitrary files to locations outside of the application's current directory. This could help the attacker launch further attacks.\r\n\r\nClassic FTP 1.02 for Microsoft Windows is vulnerable; other versions may also be affected. \r\n\r\nResponse to LIST:\r\n\r\n\\..\\..\\..\\..\\..\\..\\..\\..\\..\\testfile.txt\\r\\n\r\n/../../../../../../../../../testfile.txt\\r\\n ", "objectVersion": "1.0", "cvelist": ["CVE-2008-2894"], "published": "2008-06-20T00:00:00", "osvdbidlist": ["46538"], "references": [], "reporter": "Tan Chew Keong", "modified": "2008-06-20T00:00:00", "href": "https://www.exploit-db.com/exploits/31942/"}
{"cve": [{"lastseen": "2017-08-08T11:24:45", "references": ["http://vuln.sg/classicftp102-en.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/43230", "http://www.securityfocus.com/bid/29846", "http://www.vupen.com/english/advisories/2008/1899/references"], "description": "Directory traversal vulnerability in the FTP client in NCH Software Classic FTP 1.02 for Windows allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a response to a LIST command, a related issue to CVE-2002-1345.", "edition": 2, "reporter": "NVD", "published": "2008-06-27T14:41:00", "title": "CVE-2008-2894", "type": "cve", "enchantments": {"score": {"modified": "2017-08-08T11:24:45", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2008-2894"], "scanner": [], "modified": "2017-08-07T21:31:24", "cpe": ["cpe:/a:nch_software:nch_software_classic_ftp:1.02::windows"], "id": "CVE-2008-2894", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2894", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
