 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.14256 |
| Category: | FTP |
| Title: | BlackJumboDog FTP server multiple command overflow |
| Summary: | The remote host is running BlackJumboDog FTP server.;; This FTP server fails to properly check the length of parameters; in multiple FTP commands, most significant of which is USER, resulting in a stack overflow. |
| Description: | Summary: The remote host is running BlackJumboDog FTP server. This FTP server fails to properly check the length of parameters in multiple FTP commands, most significant of which is USER, resulting in a stack overflow. Vulnerability Impact: With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity, and/or availability. Solution: Upgrade to version 3.6.2 or newer. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2004-1439 BugTraq ID: 10834 http://www.securityfocus.com/bid/10834 Bugtraq: 20040910 BlackJumboDog FTP Server version 3.6.1 Buffer Overflow [Exploit included] (Google Search) http://www.ir3ip.net/pipermail/bugtraq/2004-September/009960.html CERT/CC vulnerability note: VU#714584 http://www.kb.cert.org/vuls/id/714584 http://www.security.org.sg/vuln/bjd361.html http://secunia.com/advisories/12203 XForce ISS Database: blackjumbodog-long-string-bo(16842) https://exchange.xforce.ibmcloud.com/vulnerabilities/16842 |
| Copyright | Copyright (C) 2004 David Maciejak |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |