漏洞描述
vsftpd 3.0.2 and earlier contain a vulnerability that allows remote attackers to bypass access restrictions due to improper parsing of the deny_file configuration directive.
CVE-2015-1419: vsftpd <= 3.0.2 - Access Restriction Bypass
PoC代码[已公开]
id: CVE-2015-1419
info:
name: vsftpd <= 3.0.2 - Access Restriction Bypass
author: pussycat0x
severity: medium
description: |
vsftpd 3.0.2 and earlier contain a vulnerability that allows remote attackers to bypass access restrictions due to improper parsing of the deny_file configuration directive.
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss-score: 5
cve-id: CVE-2015-1419
epss-score: 0.64113
epss-percentile: 0.98337
cpe: cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: opensuse
product: opensuse
shodan-query: "vsFTPd"
tags: cve,cve2015,network,ftp,vsftpd,tcp,passive,vuln
tcp:
- inputs:
- data: 00000000
type: hex
host:
- "{{Hostname}}"
port: 21
read-size: 1024
matchers:
- type: dsl
dsl:
- "contains(raw, 'vsFTPd')"
- "compare_versions(version, '<= 3.0.2')"
condition: and
extractors:
- type: regex
group: 1
name: version
regex:
- "vsFTPd ([0-9.]+)"
# digest: 4b0a00483046022100af30be7f6188ed6e4cf3d7c1656377291b2737a053e36c602b1443367692bf9c022100fcf9328bd67fc721eff74e69c20a7f5276a54d507d597785a418be6026439b7c:922c64590222798bb761d5b6d8e72950