Titan FTP Server versions prior to 10.40 build 1829 contain a directory traversal vulnerability that allows remote attackers to view "Properties" of user folders via path traversal. This enables user enumeration and access to sensitive user information that could aid in launching further attacks.
PoC代码[已公开]
id: CVE-2014-1843
info:
name: Titan FTP Server < 10.40 - User Properties Traversal
author: pussycat0x
severity: medium
description: |
Titan FTP Server versions prior to 10.40 build 1829 contain a directory traversal vulnerability that allows remote attackers to view "Properties" of user folders via path traversal. This enables user enumeration and access to sensitive user information that could aid in launching further attacks.
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
cvss-score: 5
cve-id: CVE-2014-1843
cwe-id: CWE-22
epss-score: 0.06863
epss-percentile: 0.90932
cpe: cpe:2.3:a:southrivertech:titan_ftp_server:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: southrivertech
product: titan_ftp_server
shodan-query: product:"Titan ftpd"
tags: cve,cve2014,network,ftp,titan-ftp,tcp,passive,vuln
tcp:
- inputs:
- data: 00000000
type: hex
host:
- "{{Hostname}}"
port: 21
read-size: 1024
matchers:
- type: dsl
dsl:
- "contains(raw, 'Titan')"
- "compare_versions(version, '< 10.40')"
condition: and
extractors:
- type: regex
group: 1
name: version
regex:
- "Titan FTP Server ([0-9.]+)"
# digest: 4b0a00483046022100fbfd03fd8b95889d3c2447063066c970c7bb54f20c9ffd0658759d7913c3d10f022100ba1f51abd5202f4fc1429b9d0c8f379e08faaa200b99d9248e4d79a7e00f7c6b:922c64590222798bb761d5b6d8e72950