AIX FTPD libc Library Remote Overflow

1999-09-28T00:00:00
ID OSVDB:9
Type osvdb
Reporter Gerrie(gerrie@hit2000.org)
Modified 1999-09-28T00:00:00

Description

Vulnerability Description

A remote overflow exists in IBM AIX. The libc library fails to perform proper bounds checking allowing an attacker to execute arbitrary commands via the FTPD daemon.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released a patch to address this vulnerability.

Short Description

A remote overflow exists in IBM AIX. The libc library fails to perform proper bounds checking allowing an attacker to execute arbitrary commands via the FTPD daemon.

References:

Vendor URL: http://www.ibm.com/us/ Snort Signature ID: 337 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999-q3/1089.html ISS X-Force ID: 3758 Generic Informational URL: http://www.whitehats.com/info/IDS257 CVE-1999-0789 CIAC Advisory: j-072 Bugtraq ID: 679