TYPSoft FTP Server Directory Traversal Vulnerability

TYPSoft FTP Server is vulnerable to directory traversal attacks.

By including relative path references (ie '/.../', '/../' or '*.*' sequences) in a FTP command, an attacker can obtain access to files outside the permitted directory structure.

Depending on the files obtained, this can supply an attacker with sensitive system data including directory information, password files or other exploitable data which could be used to further compromise the security of the vulnerable system.


 

Privacy Statement
Copyright 2010, SecurityFocus