Short Name |
FTP:COMMAND:SYMLINK |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
FTP |
Keywords |
Symbolic Link |
Release Date |
2009/08/13 |
Update Number |
1484 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against NcFTPD. A successful attack can lead to information disclosure. Under NcFTPD, symbolic links are created with server privledges and not user, this behavior can lead to information disclosure of files.
NcFTPD is prone to a remote information-disclosure vulnerability. Remote attackers can exploit this issue to view sensitive information that may help in further attacks. NcFTPD 2.8.5 is vulnerable; other versions may also be affected.