FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
BID:17972
CVE-2006-2403 |Info
FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 17972 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 15 2006 12:00AM |
| Updated: | May 16 2006 08:39PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
FileZilla FileZilla 2.2.22 FileZilla FileZilla 2.2.15 |
| Not Vulnerable: |
FileZilla FileZilla 2.2.22 |
Discussion
FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
FileZilla client is prone to a remote buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
This issue allows remote attackers to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will likely crash the application, denying further service to legitimate users.
FileZilla versions prior to 2.2.23 are vulnerable to this issue.
FileZilla client is prone to a remote buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
This issue allows remote attackers to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will likely crash the application, denying further service to legitimate users.
FileZilla versions prior to 2.2.23 are vulnerable to this issue.
Exploit / POC
FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
Solution:
The vendor has released version 2.2.23 to address this issue.
FileZilla FileZilla 2.2.15
FileZilla FileZilla 2.2.22
Solution:
The vendor has released version 2.2.23 to address this issue.
FileZilla FileZilla 2.2.15
-
FileZilla FileZilla_2_2_23.zip
http://prdownloads.sourceforge.net/filezilla/FileZilla_2_2_23.zip?down load
FileZilla FileZilla 2.2.22
-
FileZilla FileZilla_2_2_23.zip
http://prdownloads.sourceforge.net/filezilla/FileZilla_2_2_23.zip?down load
References
FileZilla Client Unspecified Remote Buffer Overflow Vulnerability
References:
References:
- FileZilla Homepage (FileZilla )
- Release Name: 2.2.23 (FileZilla)