|
Home Forum Radio Memberlist Help Search Quick Links | |
| Forum Index » Internet » Security Alerts and vulnerabilities » Internet Explorer FTP Download Directory Traversal |
| Security Alerts and vulnerabilities Lets keep abreast on the latest threats by posting those findings here.. |
 |
 |
|
Thread Tools | Display Modes |  |
|
#1
01-03-2005, 11:20 PM
|
||||
|
||||
|
The vulnerability is caused due to an input validation error in the handling of FTP file transfers. This can be exploited by a malicious FTP server to create files in arbitrary locations via directory traversal attacks by tricking a user into downloading malicious files (e.g. by dragging or copying a file or folder).
The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows 2000 SP4 / XP SP1. Solution: The vulnerability does not affect systems running Windows XP with SP2 installed. Do not download files from untrusted FTP servers. 
|
 Posted |
|
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| hijack log | der | Spyware / Virus Removal | 46 | 10-04-2005 06:49 AM |
| Internet Explorer Wallpaper | Mobo | Customizing | 2000 | XP | VISTA | 0 | 05-24-2005 10:42 AM |
| eliteuvf32.exe?? AdWare? | Alex | Spyware / Virus Removal | 31 | 05-17-2005 08:50 PM |
| Pop-up crazy | MOJET | Spyware / Virus Removal | 11 | 03-30-2005 08:22 PM |
| Internet Explorer HTML Elements Buffer Overflow | Mobo | Security Alerts and vulnerabilities | 0 | 12-06-2004 10:32 AM |
|
||
|
|
|
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
