Bugtraq: Re: Problems with various windows FTP servers

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Problems with various windows FTP servers

From: Stephen Cope <mail () unsolicited kimihia org nz>
Date: Tue, 28 May 2002 22:13:01 +1200

I discovered a few days ago that FileZilla[0] up to 0.7.0 is vulnerable
to listing files outside the root directory by using "..". The author
fixed the problem immediately and has released version 0.7.1.

http://sf.net/projects/filezilla/

SnakeByte, your download link has the / facing the wrong way.

it reports the problem [ www.kryptocrew.de/snakebyte/bed.html ].


-- 
Stephen Cope - http://sdc.org.nz/

Attachment: _bin
Description:

By Date By Thread

Current thread:

Problems with various windows FTP servers SnakeByte / Eric Sesterhenn (May 27)
- Re: Problems with various windows FTP servers ByteRage (May 28)
- Re: Problems with various windows FTP servers Stephen Cope (May 28)
- Re: Problems with various windows FTP servers Alun Jones (May 31)