War FTP Daemon Directory Traversal Network Vulnerability

Summary

The version of WarFTPd running on this host contains a vulnerability that may allow a potential intruder to gain read access to directories and files outside of the ftp root. By sending a specially crafted 'dir' command, the server may disclose an arbitrary directory.

Solution

Visit the following link and download the latest version of WarFTPd: ftp://ftp.jgaa.com/pub/products/Windows/WarFtpDaemon/

Severity

Classification

CVE CVE-2001-0295
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Core FTP Server 'Type' Command Remote Denial of Service Vulnerability
Home FTP Server Multiple Directory Traversal Vulnerabilities
httpdx Multiple Remote Denial Of Service Vulnerabilities
Core FTP Server Directory Traversal Vulnerability
SmartFTP Client Information Disclosure Vulnerability

Take action and discover your vulnerabilities