[27376] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

more silly bugs in cooolsoft 'personal ftp server'

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Knud_Erik_H=F8jgaar)
Thu Oct 10 13:53:23 2002

Message-ID: <014501c2705c$5eb30d50$24029dd9@tuborg>
From: =?iso-8859-1?Q?Knud_Erik_H=F8jgaard?= <knud@skodliv.dk>
To: <Support@cooolsoft.com>
Date: Thu, 10 Oct 2002 14:55:54 +0200
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 8bit

version tested: 2.24
pwd shows absolute path instead of relative ( ie. drive:/folder instead of
/ )
ls ../ will let a user get a dirlisting above his home directory.
mkdir ../folder will let a user create folders outside his home
directory.[1]
put file ../file will let users create files outside his home directory.[1]
get ../file will let users get files outside his home directory.

Furthermore the passwords are stored in cleartext in ftpserver.ini located
in the installation directory, defaults to drive:\progra~1\powerftp

[1] Requires write access, duh. get the ftpserver.ini and look for a user
with AcessRight1=1.

--
Knud Erik Højgaard


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[27376] in bugtraq

more silly bugs in cooolsoft 'personal ftp server'

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Knud_Erik_H=F8jgaar)Thu Oct 10 13:53:23 2002

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Knud_Erik_H=F8jgaar)
Thu Oct 10 13:53:23 2002