Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-3171 PoC — Pure-FTPd本地文件覆盖漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2011/CVE-2011-3171.yaml
Associated Vulnerability
Title:Pure-FTPd本地文件覆盖漏洞 (CVE-2011-3171)
Description:Pure-FTPd是一款流行的FTP服务程序。 Pure-FTPd中存在本地文件覆盖漏洞。借助用户名传递的输入在认证过程中没有经过正确过滤,远程攻击者可借助目录遍历序列创建任意目录。
Description
Pure-FTPd versions ≤ 1.0.22 (and earlier) contain a directory traversal vulnerability when the "Netware OES remote server" feature is enabled. This allows local users to overwrite arbitrary files on the system, potentially leading to unauthorized file modification or system compromise.
File Snapshot

 id: CVE-2011-3171

info:
  name: Pure-FTPd ≤ 1.0.22 - Directory Traversal
  author: pussycat0x
  sev

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.