Wu-ftpd Rnfr File Overwrite Network Vulnerability

Summary

The remote Wu-FTPd server seems to be vulnerable to a remote flaw. This version contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formatted rnfr command. This flaw will allow a remote attacker to overwrite any file on the system. *** OVS solely relied on the banner of the remote server *** to issue this warning, so it may be a false positive.

Solution

Upgrade to Wu-FTPd 2.4.2 or newer

Severity

Classification

CVE CVE-1999-0081

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

War FTP Daemon Directory Traversal
XM Easy Personal FTP Server 'TYPE' Command Remote Denial of Service Vulnerability
FileZilla Server Port Command Denial of Service
pyftpd Multiple Vulnerabilities
Bftpd Unspecified Remote Denial of Service Vulnerability

wu-ftpd rnfr file overwrite

Take action and discover your vulnerabilities