Jarle Aase War FTPD Directory Traversal Vulnerability

A remote user could gain read access to directories outside of the ftp root in a Jarle Aase War FTPD Server. Once a user is logged into the server, a specially crafted 'dir' command will disclose an arbitrary directory. This vulnerability could allow an attacker to gain read access to various files residing on the target machine.


 

Privacy Statement
Copyright 2010, SecurityFocus