Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities

Bugtraq ID:	39041
Class:	Boundary Condition Error
CVE:	CVE-2010-0625
Remote:	Yes
Local:	No
Published:	Mar 29 2010 12:00AM
Updated:	Sep 07 2010 12:32PM
Credit:	Francis Provencher
Vulnerable:	Novell Netware FTP Server 5.9.3 Novell Netware 6.5.0 SP8
Not Vulnerable:

Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities

Netware FTP Server is prone to multiple remote buffer-overflow vulnerabilities because the application fails to perform adequate boundary-checks on user-supplied data.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Netware FTP Server 5.09.03 is vulnerable; other versions may also be affected.

Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities

The following exploit is available:

• /data/vulnerabilities/exploits/39041.py

Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities

Solution:
The vendor has released a patch for the issue. Please see the references for more information.

Novell Netware FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities

References:

• [Full-disclosure] ZDI-10-062: Novell Netware NWFTPD RMD/RNFR/DELE (Zero Day Initiative)
  
• MOAUB #7 �?? Novell Netware NWFTPD RMD/RNFR/DELE Argument Parsing Buffer overflow (Abysssec Research)
  
• Novell Netware FTP Remote Stack Overflow (Novell)
  
• FTP for NW65SP8, abend fixes (Novell)