FTPD Glob Heap Corruption Network Vulnerability

Summary

The FTPD glob vulnerability manifests itself in handling of the glob command. The problem is not a typical buffer overflow or format string vulnerability, but a combination of two bugs: an implementation of the glob command that does not properly return an error condition when interpreting the string ~, and then frees memory which may contain user supplied data. This vulnerability is potentially exploitable by any user who is able to log in to a vulnerable server, including users with anonymous access. If successful, an attacker may be able to execute arbitrary code with the privileges of FTPD, typically root.

Solution

Contact your vendor for a fix

Severity

Classification

CVE CVE-2001-0249, CVE-2001-0550
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

HP-UX ftpd glob() Expansion STAT Buffer Overflow
GuildFTPd Long SITE Command Overflow
Trellian FTP 'PASV' Response Buffer Overflow Vulnerability
ActFax FTP Server Post Auth 'RETR' Command Denial of Service Vulnerability
Golden FTP Server Malformed Message Denial Of Service Vulnerability

FTPD glob Heap Corruption

Take action and discover your vulnerabilities