1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Freefloat FTP WMI File Upload

Attack: Freefloat FTP WMI File Upload

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit an arbitrary file upload vulnerability in Freefloat FTP.

Additional Information

Freefloat FTP is prone to an arbitrary file-upload vulnerability because it fails to adequately validate files before uploading them. Specifically, this issue affects the 'WMI' (Windows Management Instrumentation) service. An attacker can exploit this issue to execute the uploaded payload.

An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in an arbitrary code execution within the context of the vulnerable application.

Affected

  • Freefloat Freefloat FTP Server

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube