ProFTPD MKDIR Remote Overflow

1999-02-09T00:00:00
ID OSVDB:9163
Type osvdb
Reporter Jordan Ritter(jpr5@netect.com)
Modified 1999-02-09T00:00:00

Description

Vulnerability Description

A remote overflow exists in ProFTPD. There is a failure to properly check bounds when a MKDIR call is issued resulting in a buffer overflow. With a specially crafted request, an attacker can potentially execute arbitrary code as the user ProFTPD runs as (usually root) resulting in a loss of integrity, and/or availability.

Solution Description

Upgrade to version 1.2.0pre2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in ProFTPD. There is a failure to properly check bounds when a MKDIR call is issued resulting in a buffer overflow. With a specially crafted request, an attacker can potentially execute arbitrary code as the user ProFTPD runs as (usually root) resulting in a loss of integrity, and/or availability.

References:

Snort Signature ID: 349 Snort Signature ID: 351 Snort Signature ID: 350 Related OSVDB ID: 248 Other Advisory URL: http://www.bindview.com/Support/RAZOR/Advisories/1999/adv_palmetto.cfm Nessus Plugin ID:10464 Keyword: palmetto ISS X-Force ID: 1728 CVE-1999-0368 Bugtraq ID: 113 Bugtraq ID: 2242