CVE-2020-9470 : What You Need to Know

An issue was discovered in Wing FTP Server 6.2.5 before February 2020, allowing local users to view sensitive session cookies and potentially execute commands as root.

Understanding CVE-2020-9470

This CVE identifies a security vulnerability in Wing FTP Server version 6.2.5 that could lead to session hijacking and unauthorized access.

What is CVE-2020-9470?

The vulnerability in Wing FTP Server 6.2.5 allows local users to access session cookies, potentially compromising user and administrative sessions.

The Impact of CVE-2020-9470

The vulnerability exposes active session cookies within the Wing FTP HTTP interface and administration panel, enabling attackers to hijack sessions and execute commands as root.

Technical Details of CVE-2020-9470

This section provides detailed technical information about the vulnerability.

Vulnerability Description

Due to insecure permissions when handling session cookies, local users can access session and session_admin directories, exposing active session cookies.

Affected Systems and Versions

Product: Wing FTP Server 6.2.5
Vendor: Wing FTP
Version: Before February 2020

Exploitation Mechanism

Attackers can exploit the insecure permissions to view session cookies, potentially leading to session hijacking and unauthorized access.

Mitigation and Prevention

Protecting systems from CVE-2020-9470 requires immediate actions and long-term security practices.

Immediate Steps to Take

Update Wing FTP Server to the latest version with security patches.
Monitor and restrict access to sensitive directories containing session cookies.

Long-Term Security Practices

Implement least privilege access controls to limit user permissions.
Regularly audit and review access controls and permissions on critical directories.

Patching and Updates

Apply security patches and updates provided by Wing FTP to address the vulnerability and enhance system security.