7 lines
No EOL
493 B
Text
7 lines
No EOL
493 B
Text
source: http://www.securityfocus.com/bid/6492/info
|
|
|
|
It has been reported that PlatinumFTPserver fails to properly sanitize some FTP commands. By sending a malicious request to the vulnerable server, using directory traversal sequences, it is possible for a remote attacker to obtain information about sensitive resources located outside of the FTP root.
|
|
|
|
Disclosure of sensitive system files may aid the attacker in launching further attacks against the target system.
|
|
|
|
dir ..\..\..\..\ |