all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Progress Software WS_FTP Unauthenticated Remote Code Execution

Add to bookmarks
Oct. 4, 2023, 3:06 p.m. |

Packet Storm packetstormsecurity.com

This Metasploit module exploits an unsafe .NET deserialization vulnerability to achieve unauthenticated remote code execution against a vulnerable WS_FTP server running the Ad Hoc Transfer module. All versions of WS_FTP Server prior to 2020.0.4 (version 8.7.4) and 2022.0.2 (version 8.8.2) are vulnerable to this issue. The vulnerability was originally discovered by AssetNote.

assetnote code code execution deserialization exploits issue metasploit progress progress software remote code remote code execution running server software transfer unauthenticated version vulnerability vulnerable ws_ftp

Visit resource

More from packetstormsecurity.com / Packet Storm

Wireshark Analyzer 4.2.5 4 days, 6 hours ago | packetstormsecurity.com
capture code commercial features +14
Packet Fence 13.2.0 4 days, 6 hours ago | packetstormsecurity.com
abnormal access access control a network +21
SIPPTS 4.0 4 days, 7 hours ago | packetstormsecurity.com
audit check devices protocol +13
Debian Security Advisory 5692-1 4 days, 7 hours ago | packetstormsecurity.com
advisory arbitrary code code debian +18
Debian Security Advisory 5691-1 4 days, 7 hours ago | packetstormsecurity.com
advisory arbitrary code browser clickjacking +16
Debian Security Advisory 5689-1 4 days, 7 hours ago | packetstormsecurity.com
advisory arbitrary code aware chromium +19
Debian Security Advisory 5690-1 4 days, 7 hours ago | packetstormsecurity.com
advisory click debian debian linux security +11
Ubuntu Security Notice USN-6766-2 4 days, 7 hours ago | packetstormsecurity.com
action attacker conditions denial of service +16
Red Hat Security Advisory 2024-2852-03 4 days, 7 hours ago | packetstormsecurity.com
advisory apache build developer +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Cyber Security Engineer

@ SNC-Lavalin | VA531: 13900 Lincoln Park Dr, Herndon 13900 Lincoln Park Drive Suite 220, Herndon, VA, 20171 USA
View on infosec-jobs.com

Information Systems Security Officer (ISSO) - early career -Tucson AZ, Onsite

@ Austin Community College | AZ855: RMS AP Bldg M05 1151 East Hermans Road Building M05, Tucson, AZ, 85756 USA
View on infosec-jobs.com