Description
Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2020-29483 | Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files. |
References
| Link | Providers |
|---|---|
| https://www.hooperlabs.xyz/disclosures/cve-2020-8635.php |
|
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T10:03:46.253Z
Reserved: 2020-02-05T00:00:00.000Z
Link: CVE-2020-8635
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-03-07T00:15:13.303
Modified: 2024-11-21T05:39:09.830
Link: CVE-2020-8635
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses