INFOSERVE-ADV2011-09 - zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal
Advisory:
|
zFTPServer Suite 6.0.0.52 'rmdir' Directory Traversal
|
Advisory ID:
|
INFOSERVE-ADV2011-09
|
Author:
|
Stefan Schurtz
|
Contact:
|
|
Affected Software:
|
Successfully tested on zFTPServer Suite 6.0.0.52
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
CVE-ID:
|
CVE-2011-4717
|
==========================
Vulnerability Description
==========================
Vulnerability Description
==========================
zFTPServer 'rmdir' is prone to a Directory Traversal, which makes it possible to delete directories in the system