Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2399

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-2399
Last Modified 07 Mar 2011 10:09:07
Published 22 May 2008 09:09:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2399

Summary

Directory traversal vulnerability in the FireFTP add-on before 0.98.20080518 for Firefox allows remote FTP servers to create or overwrite arbitrary files via ..\ (dot dot backslash) sequences in responses to (1) MLSD and (2) LIST commands, a related issue to CVE-2002-1345. NOTE: this can be leveraged for code execution by writing to a Startup folder.

Vulnerable Systems

Application

  • Fireftp 0.98


References

CERT-VN - VU#906907

XF - fireftp-mlsd-list-directory-traversal(42516)

VUPEN - ADV-2008-1596

BID - 29289

CONFIRM - http://www.mozdev.org/source/browse/fireftp/src/content/js/connection/controlSocket.js.in.diff?r1=1.58;r2=1.59;f=h

MISC - http://vuln.sg/fireftp0971-en.html

SECUNIA - 30284


Last Updated: 27 May 2016 10:47:51