module
Titan FTP XCRC Directory Traversal Information Disclosure
| Disclosed | Created |
|---|---|
| 2010-06-15 | 2018-05-30 |
Disclosed
2010-06-15
Created
2018-05-30
Description
This module exploits a directory traversal vulnerability in the XCRC command
implemented in versions of Titan FTP up to and including 8.10.1125. By making
sending multiple XCRC command, it is possible to disclose the contents of any
file on the drive with a simple CRC "brute force" attack.
Although the daemon runs with SYSTEM privileges, access is limited to files
that reside on the same drive as the FTP server's root directory.
implemented in versions of Titan FTP up to and including 8.10.1125. By making
sending multiple XCRC command, it is possible to disclose the contents of any
file on the drive with a simple CRC "brute force" attack.
Although the daemon runs with SYSTEM privileges, access is limited to files
that reside on the same drive as the FTP server's root directory.
Authors
jduck jduck@metasploit.com
Brandon McCann @zeknox bmccann@accuvant.com
Brandon McCann @zeknox bmccann@accuvant.com
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.