CVE-2008-5692

Ipswitch WS_FTP Server Manager <6.1.1 - Auth Bypass

Title source: llm

Description

Ipswitch WS_FTP Server Manager before 6.1.1, and possibly other Ipswitch products, allows remote attackers to bypass authentication and read logs via a logLogout action to FTPLogServer/login.asp followed by a request to FTPLogServer/LogViewer.asp with the localhostnull account name.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textwebappsasp

https://www.exploit-db.com/exploits/31117

View Code ZIP pw:eip

References (8)

[Third Party Advisory] http://aluigi.altervista.org/adv/wsftpweblog-adv.txt

[Various Sources] http://docs.ipswitch.com/WS_FTP_Server611/ReleaseNotes/index.htm?k_id=ipswitch_ftp_documents_worldwide_ws_ftpserverv611releasenotes#link12

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/487686/100/200/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/487697/100/200/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/27654

[Third Party Advisory] http://secunia.com/advisories/28822

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/0473

[Third Party Advisory] http://securityreason.com/securityalert/4799

Scores

EPSS 0.0101

EPSS Percentile 76.8%

Classification

CWE

CWE-287

Status draft

Affected Products (22)

ipswitch/ws_ftp < 6.1

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

ipswitch/ws_ftp

... and 7 more

Timeline

Published Dec 19, 2008

Tracked Since Feb 18, 2026