Описание
Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web server system information by (1) issuing a CD command (CD C:) followed by the LS command, (2) specifying arbitrary paths in the UNC format (\computername\sharename).
Ссылки
- ExploitVendor Advisory
- Vendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.9.5.0 (включая)
Одно из
cpe:2.3:a:transsoft:broker_ftp_server:*:*:*:*:*:*:*:*
cpe:2.3:a:transsoft:broker_ftp_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:transsoft:broker_ftp_server:4.7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:transsoft:broker_ftp_server:5.0:*:*:*:*:*:*:*
cpe:2.3:a:transsoft:broker_ftp_server:5.1:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00808
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web server system information by (1) issuing a CD command (CD C:) followed by the LS command, (2) specifying arbitrary paths in the UNC format (\\computername\sharename).
EPSS
Процентиль: 74%
0.00808
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other