glftpd文件泄露漏洞发布时间:2000-09-15 更新时间:2000-09-15 严重程度:中 威胁程度:远程非授权文件存取 错误类型:设计错误 利用方式:服务器模式 受影响系统 GlFtpd GlFtpd 1.21b8详细描述 在glftpd的1.18到最新的1.21b8版本中都存在一个漏洞,攻击者可以获取私有文件的信息并且在没有足够权限的情况下下载它。 测试代码 在Bugtraq提供了如下的测试方法: /Groups/Mygroup并且在此你有一个名为test的目录,于是 你可以简单地键入 "chdir /Groups/Mygroup/t" glftpd并不检查你是否有权限来察看这一目录,如果你有足够的耐心,就可以看到里面私人目录 里的所有东西,当然写一个script来做会更简单些。 解决方案 到下面下载其补丁文件: GlFtpd GlFtpd 1.21b8: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b7: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b6: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b5: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b4: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b3: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b2: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.21b1: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c GlFtpd GlFtpd 1.20: Hoopy <hoopy@risciso.com> patch leakfix.c http://www.securityfocus.com/data/vulnerabilities/patches/leakfix.c 相关信息 |
