Broker FTP DELETE Command Traversarl Arbitrary File Deletion

2001-03-03T00:00:00
ID OSVDB:455
Type osvdb
Reporter se00020(se00020@lion.cc)
Modified 2001-03-03T00:00:00

Description

Vulnerability Description

Broker FTP server contains a flaw that allows a remote attacker to delete files outside of the ftp root directory. The issue is due to the server not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the DELETE FTP command.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It may be possible to correct the flaw by implementing the following workaround: Use file system permissions to restrict access of the FTP service and FTP users.

Short Description

Broker FTP server contains a flaw that allows a remote attacker to delete files outside of the ftp root directory. The issue is due to the server not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the DELETE FTP command.

References:

Security Tracker: 1000988 Related OSVDB ID: 17755 Nessus Plugin ID:10556 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-02/0533.html ISS X-Force ID: 6190 CVE-2001-0450 Bugtraq ID: 2507