BulletProof FTP Client Local Buffer Overflow Vulnerability
BID:68882
Info
BulletProof FTP Client Local Buffer Overflow Vulnerability
| Bugtraq ID: | 68882 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2014-2973 |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 24 2014 12:00AM |
| Updated: | Sep 10 2014 12:45AM |
| Credit: | Gabor Seljan |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
BulletProof FTP Client Local Buffer Overflow Vulnerability
BulletProof FTP Client is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary-checks on user-supplied data.
Local attackers can exploit this issue to execute arbitrary code in the context of the user. Failed exploit attempts will result in denial-of-service conditions.
BulletProof FTP Client is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary-checks on user-supplied data.
Local attackers can exploit this issue to execute arbitrary code in the context of the user. Failed exploit attempts will result in denial-of-service conditions.
Exploit / POC
BulletProof FTP Client Local Buffer Overflow Vulnerability
The following exploit codes are available:
The following exploit codes are available:
Solution / Fix
BulletProof FTP Client Local Buffer Overflow Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
BulletProof FTP Client Local Buffer Overflow Vulnerability
References:
References:
- BulletProof FTP Client Homepage (BulletProof Software)