Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
BID:17835
Info
Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
| Bugtraq ID: | 17835 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 04 2006 12:00AM |
| Updated: | May 04 2006 09:45PM |
| Credit: | Muhammad Ahmed Siddiqui is credited with the discovery of this vulnerability. |
| Vulnerable: |
KarjaSoft Sami FTP Server 2.0.2 |
| Not Vulnerable: | |
Discussion
Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
Sami FTP Server is prone to an unspecified buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before storing it in a finite-sized buffer.
An attacker can exploit this issue to execute arbitrary machine code in the context of the affected server application. This likely occurs with SYSTEM-level privileges.
Version 2.0.2 of Sami FTP Server is affected by this issue; other versions may also be affected.
Sami FTP Server is prone to an unspecified buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before storing it in a finite-sized buffer.
An attacker can exploit this issue to execute arbitrary machine code in the context of the affected server application. This likely occurs with SYSTEM-level privileges.
Version 2.0.2 of Sami FTP Server is affected by this issue; other versions may also be affected.
Exploit / POC
Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
References
Sami FTP Server Unspecified Authentication Buffer Overflow Vulnerability
References:
References: