CERT home
vulnerabilities & fixesevaluations & practicesresearch & analysistraining & education
homesearchFAQsite indexcontact
Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information
 

 View Notes By
Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric

Vulnerability Note VU#986843

WS-FTP Server vulnerable to buffer overflow via long string sent as argument to ftp command

Overview

A remotely exploitable buffer overflow exists in the IPSWITCH WS_FTP Server.

I. Description

Defcom Labs has discovered a remotely exploitable buffer overflow vulnerability in the IPSWITCH WS_FTP Server (on all platforms) that allows intruders to execute arbitrary code with the privileges of the process running the ftp server, typically SYSTEM. This buffer overflow exists in all versions of WS_FTP Server prior to 2.04. The buffer overflow occurs in the section of code that handles stat command parsing.

II. Impact

Remote intruders can execute arbitrary code on the target host with SYSTEM privileges.

III. Solution

Obtain a patch from your vendor.

Systems Affected
VendorStatusDate Updated
IPSWITCHVulnerable6-Nov-2001

References


http://www.ipswitch.com/support/WS_FTP-Server/patch-upgrades.html
http://www.securityfocus.com/advisories/3641

Credit

This vulnerability was discovered by Defcom Labs.

This document was written by Ian A. Finlay.

Other Information

Date Public11/05/2001
Date First Published11/06/2001 10:21:25 AM
Date Last Updated11/06/2001
CERT Advisory 
CVE Name 
Metric22.44
Document Revision14

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

Copyright 2001 Carnegie Mellon University