Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 FTP:COMMAND:GET-CMD-DIR-TRAV

Severity

 Medium

Recommended

 No

Category

 FTP

Keywords

 Multiple FTP Server GET Command Directory Traversal

Release Date

 2005/01/05

Update Number

 1213

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

FTP: Multiple FTP Server GET Command Directory Traversal


This signature detects directory traversal attempts to download a file from a malicious server. The server can embed a directory traversal attack in the filename to specify the exact file download location on the client machine.

Extended Description

Successful exploitation of the vulnerability could allow an attacker to inject malicious files on a victim machine, in an arbitrary directory.

References

  • CVE: CVE-2004-1376
  • CVE: CVE-2005-2126

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out