| 标题 | TOTOLink AC1200T8 V4.1.5cu.8611 Misconfiguration |
|---|
| 描述 | In TOTOLink AC1200T8V4.1.5cu.861 , there is a misconfiguration vulnerability about vsftpd. The vulnerability causes all files uploaded anonymously via FTP to be automatically assigned root ownership, potentially allowing remote attackers to obtain full root access and take complete control of the devices.
Detail:
In the TOTOLink AC1200T8 V4.1.5cu.861 firmware, the content of the /etc/vsftpd.conf is as follows.
# Uncomment this to enable any form of FTP write command.
write_enable=YES
#
# Default umask for local users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
local_umask=0
#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# has an effect if the above global write enable is activated. Also, you will
# obviously need to create a directory writable by the FTP user.
anon_upload_enable=YES
#
# Uncomment this if you want the anonymous FTP user to be able to create
# new directories.
anon_mkdir_write_enable=YES
# a different user. Note! Using "root" for uploaded files is not
# recommended!
chown_uploads=YES
# ASCII mangling is a horrible feature of the protocol.
ascii_upload_enable=YES
# You may fully customise the login banner string:
ftpd_banner=Welcome to blah FTP service.
# When "listen" directive is enabled, vsftpd runs in standalone mode and
# listens on IPv4 sockets. This directive cannot be used in conjunction
# with the listen_ipv6 directive.
listen=YES
#listen_port=21
ftp_username=nobody |
|---|
| 来源 | ⚠️ https://www.notion.so/TOTOLink-AC1200T8-V4-1-5cu-8611-3671f5ba989080a6aa03e6adbdd1d104?source=copy_link |
|---|
| 用户 | L-14 (UID 98432) |
|---|
| 提交 | 2026-05-21 10時43分 (19 日前) |
|---|
| 管理 | 2026-06-07 12時22分 (17 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 369114 [TOTOLINK AC1200 T8 4.1.5cu.8611 vsftpd /etc/vsftpd.conf] |
|---|
| 积分 | 17 |
|---|