Lucene search
Maksymilian ArciemowiczEDB-ID:32399HistorySep 20, 2008 - 12:00 a.m.
Multiple Vendor FTP Server - Long Command Handling Security
2008-09-2000:00:00
Maksymilian Arciemowicz
www.exploit-db.com
62
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/31289/info
FTP servers by multiple vendors are prone to a security vulnerability that allows attackers to perform cross-site request-forgery attacks.
Successful exploits can run arbitrary FTP commands on the server in the context of an unsuspecting user's session. This may lead to further attacks.
ftp://[email protected]////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
/////////////////////////////////////syst
ftp://ftp.example.com/////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////
/////////////////////////////////////SITE%20CHMOD%20777%20EXAMPLEFILE Related
freebsd_advisory
freebsd_advisory
FreeBSD-SA-09:01.lukemftpd
2009-01-07 00:00:00
FreeBSD-SA-08:12.ftpd
2008-12-23 00:00:00
securityvulns
securityvulns
Multiple FTP servers unsafe fgets() vulnerability
2009-01-11 00:00:00
FreeBSD Security Advisory FreeBSD-SA-09:01.lukemftpd
2009-01-09 00:00:00
FreeBSD Security Advisory FreeBSD-SA-08:12.ftpd
2009-01-11 00:00:00
freebsd
freebsd
FreeBSD -- Cross-site request forgery in ftpd(8)
2008-12-23 00:00:00
proftpd -- Long Command Processing Vulnerability
2008-09-22 00:00:00
cve
cve
CVE-2008-4247
2008-09-25 19:25:18
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-08:12.ftpd.asc)
2008-12-29 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-08:12.ftpd.asc)
2008-12-29 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-09:01.lukemftpd.asc)
2009-01-13 00:00:00
prion
prion
Cross site request forgery (csrf)
2008-09-25 19:25:00
nessus
nessus
Solaris 10 (x86) : 140400-03
2018-03-12 00:00:00
Solaris 10 (sparc) : 140399-03
2018-03-12 00:00:00
nvd
nvd
CVE-2008-4247
2008-09-25 19:25:18
debiancve
debiancve
CVE-2008-4247
2008-09-25 19:25:18
cvelist
cvelist
CVE-2008-4247
2008-09-25 19:00:00
oracle
oracle
Security | Oracle Critical Patch Update - July 2010
2010-07-13 00:00:00