Test ID:	1.3.6.1.4.1.25623.1.0.802034
Category:	FTP
Title:	KnFTPd FTP Server Multiple Commands Remote Buffer Overflow Vulnerabilities
Summary:	KnFTPd Server is prone to multiple buffer overflow vulnerabilities.
Description:	Summary: KnFTPd Server is prone to multiple buffer overflow vulnerabilities. Vulnerability Insight: The flaws are due to an error while processing the multiple commands, which can be exploited to cause a buffer overflow by sending a command with specially-crafted an overly long parameter. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary code on the system or cause the application to crash. Affected Software/OS: KnFTPd Server Version 1.0.0. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-5166 Bugtraq: 20110902 KnFTPd v1.0.0 Multiple Command Remote Buffer Overflow (Google Search) http://archives.neohapsis.com/archives/bugtraq/2011-09/0015.html http://www.exploit-db.com/exploits/17819 http://www.exploit-db.com/exploits/17856 http://www.exploit-db.com/exploits/17870 http://www.exploit-db.com/exploits/18089 http://www.osvdb.org/75147 http://secunia.com/advisories/45907 XForce ISS Database: knftpd-multiple-commands-bo(69557) https://exchange.xforce.ibmcloud.com/vulnerabilities/69557
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.