Ipswitch.WSFTP.iFtpSvc.Option.Remote.Command.Execution

description-logoDescription

It indicates an attempt to execute commands remotely against the WS_FTP Server. A vulnerability exists in Ipswitch WS_FTP Server 4.0.2 which could allow remote authenticated users to execute arbitrary programs. The bug exists because users can use the SITE command to alter the iFtpSvc options handled by iftpmgr.exe.

affected-products-logoAffected Products

Ipswitch WS_FTP Pro Versions 1.0.1-8.03.

Impact logoImpact

Compromise of the affected system.

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)