Mabry FTPServer/X Command Username Format String Flaw

2004-01-11T06:59:26
ID OSVDB:3461
Type osvdb
Reporter OSVDB
Modified 2004-01-11T06:59:26

Description

Vulnerability Description

FTPServer/X contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker uses specially crafted username, and will result in loss of availability for the service.

Solution Description

Upgrade to version 1.00.051 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

FTPServer/X contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker uses specially crafted username, and will result in loss of availability for the service.

Manual Testing Notes

a- traditional format string: Connecté à 127.0.0.1. 220 Mollensoft FTP Server 3.5.3 Ready. Utilisateur (127.0.0.1:(none)) : %s%s%s%s

b-Mecanisme de synchronisation de variable: Connecté à 127.0.0.1. 220 Mollensoft FTP Server 3.5.3 Ready. Utilisateur (127.0.0.1:(none)) : %999d

References:

Vendor URL: http://www.mabry.com/ftpserv/index.htm Secunia Advisory ID:10608 Other Advisory URL: http://www.securitytracker.com/alerts/2004/Jan/1008667.html Mail List Post: http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032469.html