UNIX focus

‘ProFTPd mod_site_misc Directory Traversal’

ProFTPd is a major Open Source FTP server. ProFTPd is for example used by ftp.apple.com, ftp.openssl.org and ftp.rsa.com. When ProFTPd is compiled with mod_site_misc and when a directory is writable, an attacker can use mod_site_misc to, create a directory located outside the writable directory, delete a directory located outside the writable directory, create a symlink located outside the writable directory and change the time of a file located outside the writable directory.’

Read More »