Figure-FireFTP
FireFTP FirefoxExtended double quotation mark Security Bypass Vulnerability, the method is very simple.
Bugraq ID: 36536
Cncan id: CNCAN-2009093003
Vulnerability cause
Input verification error
Impact System
FireFTP 1.0.5
Unaffected System
FireFTP 1.0.6
Hazards
Remote attackers can exploit this vulnerability to bypass security restrictions and perform unauthorized operations.
Attack Conditions
Attackers must construct malicious files to trick users into processing them.
Vulnerability Information
FireFTP Firefox is an FTP client Extension Based on Mozilla Firefox.
When fireftpis processing the file name, it is passed to psftp.exe without any authorization. Attackers can trick users into downloading the file to the Firefox installation directory or performing non-period SFTP operations through specially named files on the SFTP server.
Successful exploitation of the vulnerability requires an attacker to trick the user into performing a move, delete, mode change operation on the SFTP server or download a file with a special name from the SFTP server.
Test Method
Vendor solutions
You can upgrade to FireFTP 1.0.6:
FireFTP 1.0.5
FireFTP fireftp-1.0.6-fx.xpi
Http://releases.mozilla.org/pub/mozilla.org/addons/684/fireftp-1.0.6-f x. xpi
Vulnerability provider
Tan Chew Keong
Vulnerability message Link
Http://vuln.sg/fireftp105-en.html
Vulnerability Message Title
FireFTP for FireFox SFTP Command Manipulation Security Issue
I am sure you know how to fix the FireFTP vulnerability! Hope to be useful to everyone!
- Start fireFTP extension of firefox separately
- How to Use fireftp provided by firefox to upload webpages
- FireFTP --- firfox Extension
- Use text in FireFTP
- Configure fireFTP in ubuntu 9.04
- FireFTP usage
- Help you solve FireFTP Chinese garbled Problem