SAINT CorporationSAINT:C9426DC1130716BFDCD0A435F267F6FCGoodTech SSH Server SFTP buffer overflow
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
EPSS
Percentile
96.0%
Added: 11/28/2008
CVE: CVE-2008-4726
BID: 31879
OSVDB: 49249
Background
GoodTech SSH Server is an SSH Server providing secure remote console, secure file transfer, and secure port forwarding capabilities for Windows platforms.
Problem
Buffer overflow vulnerabilities in GoodTech SSH Server allow remote, authenticated attackers to execute arbitrary commands by sending specially crafted arguments to SFTP commands.
Resolution
Restrict access to trusted users only.
References
<http://secunia.com/advisories/32375/>
Limitations
Exploit works on GoodTech SSH Server 6.4 and requires a valid SSH login and password.
This exploit requires the **sftp** command to be present on the SAINTexploit host.
The PERL module IO::Pty is required to execute this exploit.
Platforms
Windows 2000
Windows Server 2003
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
EPSS
Percentile
96.0%