SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information

Report a Vulnerability

 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#986843

WS-FTP Server vulnerable to buffer overflow via long string sent as argument to ftp command

Overview

A remotely exploitable buffer overflow exists in the IPSWITCH WS_FTP Server.

I. Description

Defcom Labs has discovered a remotely exploitable buffer overflow vulnerability in the IPSWITCH WS_FTP Server (on all platforms) that allows intruders to execute arbitrary code with the privileges of the process running the ftp server, typically SYSTEM. This buffer overflow exists in all versions of WS_FTP Server prior to 2.04. The buffer overflow occurs in the section of code that handles stat command parsing.

II. Impact

Remote intruders can execute arbitrary code on the target host with SYSTEM privileges.

III. Solution

Obtain a patch from your vendor.

Systems Affected
VendorStatusDate NotifiedDate Updated
IPSWITCHVulnerable6-Nov-2001

References

http://www.ipswitch.com/support/WS_FTP-Server/patch-upgrades.html
http://www.securityfocus.com/advisories/3641

Credit

This vulnerability was discovered by Defcom Labs.

This document was written by Ian A. Finlay.

Other Information

Date Public:2001-11-05
Date First Published:2001-11-06
Date Last Updated:2001-11-06
CERT Advisory: 
CVE-ID(s): 
NVD-ID(s): 
US-CERT Technical Alerts: 
Severity Metric:22.44
Document Revision:14

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2001 Carnegie Mellon University
Disclaimers and copyright information
Get a PDF Reader