ID
VAR-201004-0517
TITLE
Multiple information disclosure vulnerabilities in Wing FTP Server prior to 3.4.1
Trust: 0.6
sources:
CNVD: CNVD-2010-0731
DESCRIPTION
Wing FTP Server is a professional cross-platform FTP server. Wing FTP Server has multiple security vulnerabilities that allow attackers to obtain sensitive information. - Inputs passed to the web client are not properly filtered before use, and directories traversal attacks can access files outside the user's HOME directory. - An unspecified error exists when using the HTTP protocol to leak sensitive information
Trust: 0.81
sources:
CNVD: CNVD-2010-0731 //
BID: 39727
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0731
AFFECTED PRODUCTS
| vendor: | wftpserver com | model: | wing ftp server | scope: | eq | version: | 3.4 | Trust: 0.6 |
| vendor: | wftpserver | model: | wing ftp server | scope: | eq | version: | 3.4 | Trust: 0.3 |
| vendor: | wftpserver | model: | wing ftp server | scope: | ne | version: | 3.4.1 | Trust: 0.3 |
sources:
CNVD: CNVD-2010-0731 //
BID: 39727
THREAT TYPE
network
Trust: 0.3
sources:
BID: 39727
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 39727
PATCH
| title: | Multiple information leak patches for Wing FTP Server prior to 3.4.1 | url: | https://www.cnvd.org.cn/patchinfo/show/333 | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0731
EXTERNAL IDS
| db: | BID | id: | 39727 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2010-0731 | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0731 //
BID: 39727
REFERENCES
| url: | http://www.wftpserver.com/serverhistory.htmhttp | Trust: 0.6 |
| url: | http://www.wftpserver.com/ | Trust: 0.3 |
| url: | http://www.wftpserver.com/serverhistory.htm | Trust: 0.3 |
sources:
CNVD: CNVD-2010-0731 //
BID: 39727
CREDITS
Reported by the vendor
Trust: 0.3
sources:
BID: 39727
SOURCES
| db: | CNVD | id: | CNVD-2010-0731 |
| db: | BID | id: | 39727 |
LAST UPDATE DATE
2022-05-17T01:48:47.575000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2010-0731 | date: | 2010-04-28T00:00:00 |
| db: | BID | id: | 39727 | date: | 2010-04-27T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2010-0731 | date: | 2010-04-28T00:00:00 |
| db: | BID | id: | 39727 | date: | 2010-04-27T00:00:00 |