Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / FTP / FTP site exec
server monitoring

FTP site exec
Article ID: 10090
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 500
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

FTP site exec
This script is Copyright (C) 1999 Renaud Deraison

FamilyFTP
Plugin ID10090
Bugtraq ID2241
CVE IDCVE-1999-0080
CVE-1999-0955

Description:
It is possible to execute
arbitrary commands on the remote host using
the site exec FTP problem. For instance,
issuing :
SITE exec /bin/sh -c /bin/id
Will execute /bin/id.

Very often, these commands will be executed as root.

Solution : Upgrade your FTP server to the latest version.

Risk factor : High
This article was:   Helpful | Not Helpful
Prev   Next
ProFTPD sreplace Function Remote Buffer Overflow     Ariel FTP Server Default document Account

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events