WebSTAR Pre-Authentication FTP Overflow

2004-07-13T16:41:29
ID OSVDB:7794
Type osvdb
Reporter Dave G.(daveg@atstake.com)
Modified 2004-07-13T16:41:29

Description

Vulnerability Description

A remote overflow exists in 4D WebSTAR. The FTP service fails to peform proper bounds checking on ftp commands resulting in a buffer overflow. With a specially crafted request, an attacker can cause cause arbitrary code execuation prior to authenticating to the server allowing the code to run in the context of "webstar user" and "wheel group", resulting in a loss of integrity.

Solution Description

Upgrade to version 5.3.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in 4D WebSTAR. The FTP service fails to peform proper bounds checking on ftp commands resulting in a buffer overflow. With a specially crafted request, an attacker can cause cause arbitrary code execuation prior to authenticating to the server allowing the code to run in the context of "webstar user" and "wheel group", resulting in a loss of integrity.

References:

Vendor URL: http://www.4d.com/ Vendor Specific Advisory URL Secunia Advisory ID:12063 Related OSVDB ID: 7795 Related OSVDB ID: 7797 Related OSVDB ID: 7796 Other Advisory URL: http://www.atstake.com/research/advisories/2004/a071304-1.txt Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0005.html ISS X-Force ID: 16686 CVE-2004-0695 Bugtraq ID: 10720