High Performance Anonymous FTP Server多个缓冲区溢出漏洞

hpaftpd是一款高性能FTP服务程序。 hpaftpd多个命令存在边界条件错误，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 hpaftpd读取用户数据使用如下代码： n = nbgetnbc, buf, BUFSIZE - 1; 这里BUFSIZE定义为： define BUFSIZE 8192 而此BUFSIZE用于登录用户数据，如： sprintfobuf, "331 Password required for %s\r\n", ftpc-user; ftpc-user限制于8192，而obuf也限制在8192: char bufBUFSIZE, obufBUFSIZ...

Stack overflow

Multiple stack-based buffer overflows in High Performance Anonymous FTP Server hpaftpd 1.01 allow remote attackers to execute arbitrary code via long arguments to the 1 USER, 2 PASS, 3 CWD, 4 MKD, 5 RMD, 6 DELE, 7 RNFR, or 8 RNTO FTP command...

CVE-2007-1731

CVE-2007-1731 affects High Performance Anonymous FTP Server (hpaftpd) 1.01. The vulnerability arises from multiple stack-based buffer overflows when processing long arguments to the FTP commands: USER, PASS, CWD, MKD, RMD, DELE, RNFR, and RNTO. This could allow remote attackers to execute arbitra...

[NEWS] hpaftpd Multiple Buffer Overflows

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

hpaftpd multiple buffer overflows

Buffer overflows in multiple FTP commands...