Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
BID:12071
Info
Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
| Bugtraq ID: | 12071 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Dec 21 2004 12:00AM |
| Updated: | Dec 21 2004 12:00AM |
| Credit: | Slotto Corleone <[email protected]> and the De_aap security team are credited with the discovery of these issues. |
| Vulnerable: |
Rosiello Security rFTPD 2.0 |
| Not Vulnerable: | |
Discussion
Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
Multiple remote vulnerabilities reportedly affect Rosiello Security's rftpd. These issues are due to buffer mismanagement and failures to handle certain network data.
The first issue is a failure of the application to properly implement an authentication scheme. Multiple information leaks reportedly affects the application due to a failure to properly NULL terminate strings created with the 'strncpy()' function. Multiple remote buffer overflows are reported to affect various commands of the affected server application. A local buffer overflow exists in the processing of the Message Of The Day (MOTD) file. Finally, the affected application is affected by an access validation vulnerability.
These issues may be exploited to gain unauthorized access to the FTP server, reveal potentially sensitive memory, trigger a denial of service condition, bypass file and directory permissions, and execute arbitrary code with the privilege of the affected server process.
Multiple remote vulnerabilities reportedly affect Rosiello Security's rftpd. These issues are due to buffer mismanagement and failures to handle certain network data.
The first issue is a failure of the application to properly implement an authentication scheme. Multiple information leaks reportedly affects the application due to a failure to properly NULL terminate strings created with the 'strncpy()' function. Multiple remote buffer overflows are reported to affect various commands of the affected server application. A local buffer overflow exists in the processing of the Message Of The Day (MOTD) file. Finally, the affected application is affected by an access validation vulnerability.
These issues may be exploited to gain unauthorized access to the FTP server, reveal potentially sensitive memory, trigger a denial of service condition, bypass file and directory permissions, and execute arbitrary code with the privilege of the affected server process.
Exploit / POC
Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
Symantec is aware of exploits designed to leverage these issues. Currently however these exploits are not being publicly circulated.
Symantec is aware of exploits designed to leverage these issues. Currently however these exploits are not being publicly circulated.
Solution / Fix
Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Rosiello Security RFTPD Multiple Remote And Local Vulnerabilities
References:
References:
- Projects Page (Rosiello Security)
- rFTPD Home Page (Rosiello Security)
- Vendor Home Page (Rosiello Security)