XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
BID:17836
Info
XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
| Bugtraq ID: | 17836 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 04 2006 12:00AM |
| Updated: | May 04 2006 09:45PM |
| Credit: | Muhammad Ahmed Siddiqui is credited with the discovery of this vulnerability. |
| Vulnerable: |
dxmsoft XM Easy Personal FTP Server 4.3 |
| Not Vulnerable: | |
Discussion
XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
XM Easy Personal FTP Server is prone to an unspecified buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before storing it in a finite-sized buffer.
An attacker can exploit this issue to execute arbitrary machine code in the context of the affected server application. This likely occurs with SYSTEM-level privileges.
Version 4.3 of XM Easy Personal FTP Server is affected by this issue; other versions may also be affected.
XM Easy Personal FTP Server is prone to an unspecified buffer-overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before storing it in a finite-sized buffer.
An attacker can exploit this issue to execute arbitrary machine code in the context of the affected server application. This likely occurs with SYSTEM-level privileges.
Version 4.3 of XM Easy Personal FTP Server is affected by this issue; other versions may also be affected.
Exploit / POC
XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
References
XM Easy Personal FTP Server Unspecified Authentication Buffer Overflow Vulnerability
References:
References: