234 Jigunet Corporation TwinFTP Server 1.0.3 R2 Directory Traversal FTP 2004/09/13 Nico 'Triplex' Spicher Triplex at IT-Helpnet dot de http://triplex.it-helpnet.de/ http://www.it-helpnet.de/ Marc Ruef marc dot ruef at computec dot ch http://www.computec.ch computec.ch 2004/11/13 1.2 Made some corrections and enhancements in version 1.1. Corrected the plugin structure and added the accuracy values in 1.2 tcp 21 open|sleep|close|pattern_exists 220 TwinFTP Server Standard 1.0.3 R2 (win32) 80 This plugin was written with the ATK-Plugin-Creator [http://triplex.it-helpnet.de]. Tan Chew Keong chewkeong@security.org.sg http://www.security.org.sg/ SIG^2 Vulnerability Research Advisory 2004/09/12 http://www.security.org.sg/vuln/twinftp103r2.html Jigunet Corporation TwinFTP Server 1.0.3 R2 Jigunet Corporation TwinFTP Server 1.0.3 R3 and newer or other ftp servers Directory Traversal Tan Chew Keong has reported a vulnerability in Twin FTP Server, which can be exploited by malicious users to access files in arbitrary locations on a vulnerable system. The vulnerability is caused due to an input validation error within the processing of arguments passed via the CWD, STOR and RETR FTP commands. Upgrade to Version 1.0.3 R3 that is released on 10 Sep 2004 Approx. 10 minutes Maybe Yes Yes High 3 7 9 3 12511 Hacking Intern - Angriffe, Strategien, Abwehr, Marc Ruef, Marko Rogge, Uwe Velten and Wolfram Gieseke, November 1, 2002, Data Becker, Düsseldorf, ISBN 381582284X http://www.computec.ch