Nessus Plugin #10821
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
FTPD glob Heap Corruption
- Family:
- FTP
- Category:
- mixed
- Copyright:
- Copyright (C) 2001 E*Maze
- Summary:
- Check if the remote FTPD s vulnerable to a glob heap corruption vulnerability
- Version:
- $Revision: 1.21 $
- Cve_id:
- CAN-2001-0249, CVE-2001-0550
- Bugtraq_id:
- 2550, 3581
- Xrefs:
- -
- Description:
The FTPD glob vulnerability manifests itself in handling of the glob command.
The problem is not a typical buffer overflow or format string vulnerability,
but a combination of two bugs: an implementation of the glob command that does not
properly return an error condition when interpreting the string ~{,
and then frees memory which may contain user supplied data. This
vulnerability is potentially exploitable by any user who is able to log in to
a vulnerable server, including users with anonymous access. If successful, an
attacker may be able to execute arbitrary code with the privileges of FTPD,
typically root.
Solution : Contact your vendor for a fix
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.