ProFTPD SITE CHGRP Command Lets Remote Authenticated Users Modify File/Directory Group Ownership
|
|
SecurityTracker Alert ID: 1012488 |
|
SecurityTracker URL: http://securitytracker.com/id/1012488
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Updated: Dec 15 2004
|
Original Entry Date: Dec 13 2004
|
Impact:
Modification of system information
|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes
|
Version(s): 1.2.9
|
Description:
A vulnerability was reported in ProFTPD. A remote authenticated user can change the group ownership of FTP-accessible files and directories.
SECURITY.NNOV posted a report by rasco describing that a remote authenticated user can issue the SITE CHGRP command to change the group permissions on files and directories. The server does not check the user's privileges when executing the command.
|
Impact:
A remote authenticated user can change the group ownership of FTP-accessible files and directories.
|
Solution:
The report states that the vendor has indicated that the administrator can apply a <Limit> statement to prevent users from invoking the affected command:
<Limit SITE_CHGRP> DenyAll
</Limit>
|
Vendor URL: www.proftpd.org/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 13 Dec 2004 11:31:01 -0500
Subject: http://www.security.nnov.ru/search/document.asp?docid=7316
|
SECURITY.NNOV postecd a report by rasco describing an access control vulnerability
in ProFTPD version 1.2.9.
It is reported that a remote authenticated user can issue the SITE CHGRP command
to change the group permissions on files and directories. The server does not check
the user's privileges when executing the command.
The report states that the vendor has indicated that the administrator can apply
a <Limit> statement to prevent users from invoking the affected command:
<Limit SITE_CHGRP>
DenyAll
</Limit>
|
|
