IBM AIX FTP Client Local Buffer Overflow Vulnerability
BID:25077
Info
IBM AIX FTP Client Local Buffer Overflow Vulnerability
| Bugtraq ID: | 25077 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-4004 |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 26 2007 12:00AM |
| Updated: | Jul 30 2007 07:55PM |
| Credit: | An anonymous person reported this issue to iDefense. |
| Vulnerable: |
IBM AIX 5.3 IBM AIX 5.2 |
| Not Vulnerable: | |
Discussion
IBM AIX FTP Client Local Buffer Overflow Vulnerability
The IBM AIX FTP application is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
A nonprivileged user may trigger this vulnerability to execute code with superuser privileges. Failed exploit attempts will likely result in a denial of service.
IBM AIX 5.2 and 5.3 are vulnerable.
The IBM AIX FTP application is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
A nonprivileged user may trigger this vulnerability to execute code with superuser privileges. Failed exploit attempts will likely result in a denial of service.
IBM AIX 5.2 and 5.3 are vulnerable.
Exploit / POC
IBM AIX FTP Client Local Buffer Overflow Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
IBM AIX FTP Client Local Buffer Overflow Vulnerability
Solution:
The vendor has released fixes for this issue. Please see the referenced advisory for more information.
IBM AIX 5.2
IBM AIX 5.3
Solution:
The vendor has released fixes for this issue. Please see the referenced advisory for more information.
IBM AIX 5.2
IBM AIX 5.3
References
IBM AIX FTP Client Local Buffer Overflow Vulnerability
References:
References:
- IBM Homepage (IBM)
- iDefense Security Advisory 07.26.07: IBM AIX capture Terminal Control Sequence B (iDefense Labs
- Quick links for AIX fixes (IBM)