ID de Prueba:	1.3.6.1.4.1.25623.1.0.902087
Categoría:	FTP
Título:	Titan FTP Server < 8.30.1231 Directory Traversal Vulnerabilities
Resumen:	Titan FTP Server is prone to directory traversal; vulnerabilities.
Descripción:	Summary: Titan FTP Server is prone to directory traversal vulnerabilities. Vulnerability Insight: The flaws are due to - Input validation error when processing 'XCRC' commands, which can be exploited to determine the existence of a file outside the FTP root directory. - Input validation error when processing 'COMB' commands, which can be exploited to read and delete an arbitrary file. Vulnerability Impact: Successful exploitation will allow attackers to download arbitrary files and deletion of arbitrary files on the server. Affected Software/OS: Titan FTP Server version 8.10.1125 and prior. Solution: Update to version 8.30.1231 or later. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2425 BugTraq ID: 40949 http://www.securityfocus.com/bid/40949 Bugtraq: 20100617 TitanFTP Server COMB directory traversal (Google Search) http://www.securityfocus.com/archive/1/511873/100/0/threaded http://www.osvdb.org/65622 http://secunia.com/advisories/40237 Common Vulnerability Exposure (CVE) ID: CVE-2010-2426 Bugtraq: 20100615 TitanFTP Server Arbitrary File Disclosure (Google Search) http://www.securityfocus.com/archive/1/511839/100/0/threaded http://osvdb.org/65533 XForce ISS Database: tfs-xcrc-dir-traversal(59492) https://exchange.xforce.ibmcloud.com/vulnerabilities/59492
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.