| VID |
16045 |
| Severity |
40 |
| Port |
21 |
| Protocol |
TCP |
| Class |
FTP |
| Detailed Description |
The ProFTPD pre6 is vulnerable to a format string attack via NLST command.
ProFTPD pre6 server has a format string vulnerability, makes the remote FTP server crash. It arises when a remote attacker has login credentials or anonymous FTP access and issues a crafted NLST command as the following:
NLST aaaXXXX%u%u%u...["%u" * 36]...%u%u%u%653300u%n
where XXXX have ascii values 0xDC, 0x4F, 0x07 and 0x08.
This vulnerability will cause the remote FTP server crash and allows a remote attacker to gain root access easily.
* Platforms Affected:
ProFTPD 1.2.0pre1
ProFTPD 1.2.0pre2
ProFTPD 1.2.0pre3
ProFTPD 1.2.0pre4
ProFTPD 1.2.0pre5
ProFTPD 1.2.0pre6 |
| Recommendation |
Upgrade to ProFTPD 1.2pre7 or later from the ProFTPD web site at http://www.proftpd.org/download.html |
| Related URL |
CVE-1999-0911 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
