FTP : ProFTPD ASCII File Transfer Buffer Overrun

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51997

Categoría: FTP

Título: ProFTPD ASCII File Transfer Buffer Overrun

Resumen: NOSUMMARY

Descripción: Description:

The remote FTP server according to its version number,
is a ProFTPD server vulnerable to a buffer overflow
if a malformed file uploaded in binary mode is
subsequently downloaded in ASCII mode.

Versions up to and including 1.2.9rc2 are vulnerable.

Solution : Upgrade to a later version.

Risk factor : Critical

Referencia Cruzada: BugTraq ID: 8679
Common Vulnerability Exposure (CVE) ID: CVE-2003-0831
Bugtraq: 20030924 [slackware-security] ProFTPD Security Advisory (SSA:2003-259-02) (Google Search)
http://marc.info/?l=bugtraq&m=106441655617816&w=2
Bugtraq: 20031013 Remote root exploit for proftpd \n bug (Google Search)
http://marc.info/?l=bugtraq&m=106606885611269&w=2
CERT/CC vulnerability note: VU#405348
http://www.kb.cert.org/vuls/id/405348
https://www.exploit-db.com/exploits/107/
http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012072.html
ISS Security Advisory: 20030923 ProFTPD ASCII File Remote Compromise Vulnerability
http://xforce.iss.net/xforce/alerts/id/154
http://www.mandriva.com/security/advisories?name=MDKSA-2003:095
http://secunia.com/advisories/9829
XForce ISS Database: proftpd-ascii-xfer-newline-bo(12200)
https://exchange.xforce.ibmcloud.com/vulnerabilities/12200

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51997
Categoría:	FTP
Título:	ProFTPD ASCII File Transfer Buffer Overrun
Resumen:	NOSUMMARY
Descripción:	Description: The remote FTP server according to its version number, is a ProFTPD server vulnerable to a buffer overflow if a malformed file uploaded in binary mode is subsequently downloaded in ASCII mode. Versions up to and including 1.2.9rc2 are vulnerable. Solution : Upgrade to a later version. Risk factor : Critical
Referencia Cruzada:	BugTraq ID: 8679 Common Vulnerability Exposure (CVE) ID: CVE-2003-0831 Bugtraq: 20030924 [slackware-security] ProFTPD Security Advisory (SSA:2003-259-02) (Google Search) http://marc.info/?l=bugtraq&m=106441655617816&w=2 Bugtraq: 20031013 Remote root exploit for proftpd \n bug (Google Search) http://marc.info/?l=bugtraq&m=106606885611269&w=2 CERT/CC vulnerability note: VU#405348 http://www.kb.cert.org/vuls/id/405348 https://www.exploit-db.com/exploits/107/ http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012072.html ISS Security Advisory: 20030923 ProFTPD ASCII File Remote Compromise Vulnerability http://xforce.iss.net/xforce/alerts/id/154 http://www.mandriva.com/security/advisories?name=MDKSA-2003:095 http://secunia.com/advisories/9829 XForce ISS Database: proftpd-ascii-xfer-newline-bo(12200) https://exchange.xforce.ibmcloud.com/vulnerabilities/12200
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com