#VU35857 Path traversal in Titan FTP Server - CVE-2019-10009

Cybersecurity Help s.r.o.

Published: 2019-06-03 | Updated: 2021-06-17

Vulnerability identifier: #VU35857

Vulnerability risk: Medium

CVSSv4.0: 5.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2019-10009

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Titan FTP Server
Server applications / Other server solutions

Vendor: South River Technologies

Description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a .... technique, arbitrary files can be loaded in the server response outside the root directory.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Titan FTP Server: 2019

External links
https://packetstormsecurity.com/files/152244/Titan-FTP-Server-2019-Build-3505-Directory-Traversal.html
https://seclists.org/fulldisclosure/2019/Mar/47
https://www.southrivertech.com/software/regsoft/titanftp/v19/verhist_en.html
https://seclists.org/fulldisclosure/2019/Mar/47
https://www.exploit-db.com/exploits/46611
https://www.exploit-db.com/exploits/46611/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Path traversal in Titan FTP Server