CVE-2023-43177 Scanner

CrushFTP is a powerful file server supporting a variety of protocols including FTP, SFTP, HTTP, HTTPS, and WebDAV. It is widely used by businesses and IT professionals for secure file transfer and sharing. This software offers advanced features such as web-based administration, file encryption, and event triggers. CrushFTP is deployed in small to large enterprises, facilitating secure data exchange and collaboration across different geographical locations. The vulnerability addressed affects versions prior to 10.5.1, highlighting the importance of maintaining updated software to ensure security.

The identified vulnerability in CrushFTP allows unauthenticated remote code execution (RCE) due to improperly controlled modification of dynamically-determined object attributes. This critical security issue permits attackers to execute arbitrary code on the server without any user interaction. It stems from the misuse of object properties, enabling attackers to bypass security measures and gain unauthorized access to the system. This vulnerability poses a severe risk, as it can lead to full system compromise.

The vulnerability is exploited by sending crafted requests to the CrushFTP server. Specifically, attackers manipulate object attributes through the web interface, leveraging improper validation mechanisms. This process involves the execution of a sequence of HTTP requests that exploit the dynamic object attribute modification flaw. The exploit's effectiveness is facilitated by CrushFTP's handling of certain parameters, allowing the attacker to inject and execute malicious code remotely. These actions compromise the server's integrity, confidentiality, and availability.

Exploitation of this vulnerability can have severe consequences, including unauthorized access to sensitive data, installation of malware, disruption of service, and complete system compromise. Attackers can gain control over the CrushFTP server, manipulate files, redirect data flows, and access other internal network resources. The breach could result in data theft, loss of service, and potentially severe financial and reputational damage to the affected organization.

By leveraging the securityforeveryone platform, users gain access to comprehensive cybersecurity assessments, including the detection of critical vulnerabilities like CVE-2023-43177 in CrushFTP. Our platform employs cutting-edge technology to scan digital assets for security weaknesses, offering detailed reports and actionable insights. Members benefit from regular updates, expert support, and a suite of tools designed to enhance their cybersecurity posture. Protecting your digital infrastructure has never been more straightforward, ensuring peace of mind in an increasingly complex digital landscape.

References

• https://nvd.nist.gov/vuln/detail/CVE-2023-43177
• https://convergetp.com/2023/11/16/crushftp-zero-day-cve-2023-43177-discovered/
• https://blog.projectdiscovery.io/crushftp-rce/
• https://github.com/the-emmons/CVE-Disclosures/blob/main/Pending/CrushFTP-2023-1.md