CVE-2019-9649

MEDIUM

Core FTP <2.0 Build 674 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-9649. PoCs published by Kevin Randall, KevinRandall1337.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in CoreFTP Server using the MDTM command to leak file metadata (modification time) of files outside the restricted directory. The PoC confirms the vulnerability by querying the modification time of a system file (ARP.exe).

Description

An issue was discovered in the SFTP Server component in Core FTP 2.0 Build 674. Using the MDTM FTP command, a remote attacker can use a directory traversal technique (..\..\) to browse outside the root directory to determine the existence of a file on the operating system, and its last modified date.

Exploits (2)

exploitdb WORKING POC

by Kevin Randall · textdoswindows

https://www.exploit-db.com/exploits/46534

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in CoreFTP Server using the MDTM command to leak file metadata (modification time) of files outside the restricted directory. The PoC confirms the vulnerability by querying the modification time of a system file (ARP.exe).

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: CoreFTP Server FTP / SFTP Server v2 - Build 674

Auth required

Prerequisites: FTP access with valid credentials · CoreFTP Server v2 Build 674

MITRE ATT&CK