OpenFTPD SITE MSG FTP Command Format String

2004-07-22T10:34:58
ID OSVDB:8261
Type osvdb
Reporter Thomas Wana(greuff@void.at)
Modified 2004-07-22T10:34:58

Description

Vulnerability Description

A local format string flaw exists in OpenFTPD. The SITE MSG command fails to validate user input resulting in a format string error. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Upgrade to version 0.30.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A local format string flaw exists in OpenFTPD. The SITE MSG command fails to validate user input resulting in a format string error. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://www.openftpd.org:9673/openftpd/ Security Tracker: 1010823 Secunia Advisory ID:12174 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-08/0017.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0350.html ISS X-Force ID: 16843 Generic Exploit URL: http://www.securityfocus.com/data/vulnerabilities/exploits/openftpdFormatStringExploit.c Bugtraq ID: 10830