Summary
The remote FTP server contains world-writeable files
Description :
By crawling through the remote FTP server, several directories where marked as being world writeable.
An attacker may use this misconfiguration problem to use the remote FTP server to host arbitrary data, including possibly illegal content (ie: Divx movies, etc...).
Solution
Configure the remote FTP directories so that they are not world-writeable.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Wing FTP Server Denial of Service Vulnerability and Information Disclosure Vulnerability
- Ipswitch WS_FTP Professional 'HTTP' Response Format String Vulnerability
- Golden FTP Server 'DELE' Command Directory Traversal Vulnerability
- VicFTPS 'LIST' Command Remote Denial of Service Vulnerability
- NcFTPD Symbolic Link Information Disclosure Vulnerability