CVE-2020-20277

Опубликовано: 18 дек. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Средний

Описание

There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's compose_abspath function that can be abused to read or write to arbitrary files on the filesystem, leak process memory, or potentially lead to remote code execution.

Ссылки

http://packetstormsecurity.com/files/167908/uftpd-2.10-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
https://arinerron.com/blog/posts/6
Third Party Advisory
https://github.com/troglobit/uftpd/commit/455b47d3756aed162d2d0ef7f40b549f3b5b30fe
Patch
Third Party Advisory
http://packetstormsecurity.com/files/167908/uftpd-2.10-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
https://arinerron.com/blog/posts/6
Third Party Advisory
https://github.com/troglobit/uftpd/commit/455b47d3756aed162d2d0ef7f40b549f3b5b30fe
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:troglobit:uftpd:*:*:*:*:*:*:*:*

Версия от 2.7 (включая) до 2.10 (включая)

EPSS

Процентиль: 97%

0.38913

Средний

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-p2qh-598h-6m3x