Ipswitch.WSFTP.iFtpSvc.Option.Remote.Command.Execution
Description
It indicates an attempt to execute commands remotely against the WS_FTP Server. A vulnerability exists in Ipswitch WS_FTP Server 4.0.2 which could allow remote authenticated users to execute arbitrary programs. The bug exists because users can use the SITE command to alter the iFtpSvc options handled by iftpmgr.exe.
Affected Products
Ipswitch WS_FTP Pro Versions 1.0.1-8.03.
Impact
Compromise of the affected system.
Recommended Actions
Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |