Tnftpd 'ftp://' Cross-Site Request Forgery Vulnerability Network Vulnerability

Summary

The host is running tnftpd server and is prone to Cross-Site Request Forgery vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary code to perform CSRF attacks, Web cache poisoning, and other malicious activities. Impact Level: Application/Network

Solution

Upgrade to tnftpd version 20080929 or later, ftp://ftp.netbsd.org/pub/NetBSD/misc/tnftp/

Insight

The flaw is due to the application truncating an overly long FTP command and improperly interpreting the remainder string as a new FTP command. This can be exploited via unknown vectors, probably involving a crafted 'ftp://' link to a tnftpd server.

Affected

NetBSD, tnftpd Version prior to 20080929

References

http://freshmeat.net/projects/tnftpd/?branch_id=14355&release_id=285654
http://secunia.com/advisories/31958
http://xforce.iss.net/xforce/xfdb/45534

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-7016

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Home FTp Server DOS And Multiple Directory Traversal Vulnerabilities
Cerberus FTP Server 'ALLO' Command Buffer Overflow Vulnerability
FileCopa FTP Server 'NOOP' Command DoS Vulnerability
Acritum Femitter Server Remote File Disclosure Vulnerability
Freefloat FTP Server Directory Directory Traversal Vulnerability

tnftpd 'ftp://' Cross-Site Request Forgery Vulnerability

Take action and discover your vulnerabilities