| VID |
16065 |
| Severity |
40 |
| Port |
21 |
| Protocol |
TCP |
| Class |
FTP |
| Detailed Description |
The Serv-U FTP server, according to its version number, has a long filename stack overflow vulnerability.
RhinoSoft Serv-U FTP is an FTP server for Microsoft Windows operating systems. Serv-U FTP versions prior to 4.2 are vulnerable to a stack-based buffer overflow. The vulnerability exists when a 'site chmod' command is issued on a non-existant file. If an excessively long filename is specified for the command, an internal buffer will be overrun, resulting in a failure of the FTP server.
A remote attacker, who is authenticated, can supply a chmod command with a specially-crafted file name to overflow a buffer and execute arbitrary code on the affected system with the server's privileges.
* Note: This check solely relied on the version number of the remote FTP server to assess this vulnerability, so this might be a false positive.
* References:
http://www.securiteam.com/windowsntfocus/5OP0N1PBPG.html
http://www.securitytracker.com/alerts/2004/Jan/1008841.html
http://archives.neohapsis.com/archives/bugtraq/2004-01/0249.html
http://www.securityfocus.com/archive/1/351361
* Platforms Affected:
Windows Any version
Rhino Software, Inc. Serv-U FTP Server prior to 4.2 |
| Recommendation |
Upgrade to the latest version of Serv-U (5.0 or later), available from the Serv-U Web site at http://www.serv-u.com/ |
| Related URL |
CVE-2004-2111 (CVE) |
| Related URL |
9483 (SecurityFocus) |
| Related URL |
14931 (ISS) |
|
