Re: [Openvas-discuss] Openvas and FTP checks

Thu, 25 Apr 2013 03:10:08 -0700 

Hi Michael,

please have a look at the arachni NVT also, thx.
It behaves quite similar.

Name:   arachni (NASL wrapper), Summary:        Assess web security with 
arachni, Family:       Web application abuses, OID:    
1.3.6.1.4.1.25623.1.0.110001
arachni report found put-capablities
<snip>
[+] [1] HTTP PUT is enabled.
[~] ~~~~~~~~~~~~~~~~~~~~
[~] ID Hash:  773f567175f1317ad55f15120daf9a7b91ae274c17ef3f2cf034feb3fb9d7e6a
[~] Severity: High
[~] URL:      http://servername:8080/Arachni-ccdfa
[~] Element:  server
[~] Method:   GET
[~] Tags:     http, methods, put, server
[~] Description: 
[~] 3rd parties can upload files to the web-server.
<snip>

the listed Webpage for verification 
http://Servername:8080/common/
<snip>
/common/ 
[To Parent Directory]
     Thursday, April 18, 2013 12:18 PM           87 Arachni-ccdfa
<snip>

cheers,
        Norman

-----Ursprüngliche Nachricht-----
Von: Openvas-discuss [mailto:[email protected]] Im 
Auftrag von Michael Meyer
Gesendet: Donnerstag, 25. April 2013 12:05
An: [email protected]
Betreff: Re: [Openvas-discuss] Openvas and FTP checks

*** Paula Gonzalez Muñoz wrote:

> I believe it is this one: *Medium* (CVSS: 5.0)
> NVT: FTP Writeable
> Directories<http://192.168.8.192:9392/omp?cmd=get_nvts&oid=1.3.6.1.4.1.25623.1.0.19782&token=2170656d-7042-4074-90b2-a1b772b14d5e>(OID:
> 1.3.6.1.4.1.25623.1.0.19782<http://192.168.8.192:9392/omp?cmd=get_nvts
> &oid=1.3.6.1.4.1.25623.1.0.19782&token=2170656d-7042-4074-90b2-a1b772b
> 14d5e>)
> but I am not 100% sure.

Hmm...ftp_writeable_directories.nasl seems to remove the directories

"send(socket:soc, data:'RMD ' + directory + sep + str + '\r\n');"

I'll have a look...

Micha 

-- 
Michael Meyer                            OpenPGP Key: 52A6EFA6
http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner 
_______________________________________________
Openvas-discuss mailing list
[email protected]
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
_______________________________________________
Openvas-discuss mailing list
[email protected]
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Reply via email to