LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
BID:23736
Info
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
| Bugtraq ID: | 23736 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-2348 |
| Remote: | Yes |
| Local: | No |
| Published: | May 01 2007 12:00AM |
| Updated: | Sep 02 2009 05:52PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
rPath rPath Linux 1 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux 5 Server lftp lftp 3.5.8 |
| Not Vulnerable: |
lftp lftp 3.5.9 |
Discussion
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
LFTP is prone to an arbitrary-command-injection vulnerability because it fails to adequately sanitize user-supplied data.
An attacker can exploit this issue to execute arbitrary commands in the context of the user running the application.
Versions prior to LFTP 3.5.9 are vulnerable.
LFTP is prone to an arbitrary-command-injection vulnerability because it fails to adequately sanitize user-supplied data.
An attacker can exploit this issue to execute arbitrary commands in the context of the user running the application.
Versions prior to LFTP 3.5.9 are vulnerable.
Exploit / POC
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
To exploit this issue, an attacker must entice an unsuspecting victim to use the affected application to open a malicious LFTP script.
To exploit this issue, an attacker must entice an unsuspecting victim to use the affected application to open a malicious LFTP script.
Solution / Fix
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
Solution:
Updates are available. Please see the references for details.
lftp lftp 3.5.8
Solution:
Updates are available. Please see the references for details.
lftp lftp 3.5.8
References
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
References:
References:
- LFTP Changelog (LFTP)
- LFTP Homepage (LFTP)