CVE-2020-11707 Information

Description

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. It doesn’t enforce permission over Windows Symlinks or Junctions. As a result a low-privileged user (non-admin) can craft a Junction Link in a directory he has full control of breaking out of the sandbox.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

https://github.com/belong2yourself/vulnerabilities/tree/master/ProVide/Sandbox20Escape20via20Symlink20or20Junction https://www.provideserver.com/security/

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8