Core FTP LE Remote Stack Buffer Overflow Vulnerability
BID:39972
Info
Core FTP LE Remote Stack Buffer Overflow Vulnerability
| Bugtraq ID: | 39972 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 02 2010 12:00AM |
| Updated: | Sep 01 2010 06:37PM |
| Credit: | mr_me |
| Vulnerable: |
Core FTP Core FTP LE/PRO 2.1 Build 1568 Core FTP Core FTP LE/PRO 2.1 Build 1565 Core FTP Core FTP LE 2.1 |
| Not Vulnerable: |
Core FTP Core FTP LE/PRO 2.1 Build 1643 |
Discussion
Core FTP LE Remote Stack Buffer Overflow Vulnerability
Core FTP LE is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.
Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
Core FTP LE 2.1 is vulnerable; other versions may also be affected.
Core FTP LE is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.
Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
Core FTP LE 2.1 is vulnerable; other versions may also be affected.
Exploit / POC
Core FTP LE Remote Stack Buffer Overflow Vulnerability
The following example code is available:
The following example code is available:
Solution / Fix
Core FTP LE Remote Stack Buffer Overflow Vulnerability
Solution:
Vendor updates are available. Please see the references for more information.
Solution:
Vendor updates are available. Please see the references for more information.
References
Core FTP LE Remote Stack Buffer Overflow Vulnerability
References:
References:
- Core FTP Forum Index -> News and Announcements (Core FTP)
- Core FTP Homepage (Core FTP)