|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] WS_FTP Server FTP Command Buffer Overflow Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Thu Sep 04 2003 - 09:23:05 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
WS_FTP Server FTP Command Buffer Overflow Vulnerability
SECUNIA ADVISORY ID:
SA9671
VERIFY ADVISORY:
http://www.secunia.com/advisories/9671/
CRITICAL:
Highly critical
IMPACT:
System access
WHERE:
From remote
SOFTWARE:
WS_FTP Server 4.x
WS_FTP Server 3.x
DESCRIPTION:
A vulnerability has been reported in WS_FTP Server, which can be
exploited by malicious users to compromise a vulnerable system.
The vulnerability is caused due to a boundary error when handling
user input to the FTP commands "APPE" and "STAT". This can be
exploited by supplying a specially crafted argument longer than 255
bytes, which causes a buffer overflow.
Successful exploitation allows execution of arbitrary code with the
privileges of the FTP server but requires that the malicious person
has been authenticated by the FTP server.
The vulnerability was reported in version 3.4 and has been confirmed
in version 4.01. However, other versions may also be affected.
NOTE: A related vulnerability was reported in 2001 in version 2.0.3
but fixed in version 2.0.4.
SOLUTION:
Allow only trusted users to access the FTP server.
Filter malicious input in a FTP proxy.
Use another product.
REPORTED BY / CREDITS:
pejman
CHANGELOG:
ORIGINAL ADVISORY:
OTHER REFERENCES:
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +45 7020 5144
Fax : +45 7020 5145
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]