Fastream NetFile FTP/Web Server Directory Traversal Variant Vulnerability

Fastream NetFile FTP/Web Server Directory Traversal Variant Vulnerability

The NetFile FTP/Web Server is reported prone to a directory traversal vulnerability due to insufficient sanitization of user-supplied data. This can allow an attacker to create, view, and delete arbitrary files outside the web root.

A similar issue was reported in BID 10658. The fix for that issue did not properly filter all directory traversal sequences.

This issue is addressed in NetFile version 7.5.0 Beta 7 and above.