CesarFTP MKD Command Buffer Overflow Network Vulnerability

Summary

The remote system is running CesarFTP server, which is vulnerable to a buffer overflow attack. Description : CesarFTP Server version <= 0.99g is prone to a buffer overflow attack when using some ftp command followed with a long string of arguments. The system could crash, and accepts/execute arbitrary commands after the initial overflow attack. Note that the service runs with LOCAL SYSTEM privileges on the remote host, which means that an attacker can possible gain complete control over the system. To use the flaw an attacker needs access to the requested FTP server, by using a valid account/password or if activated the anonymous account. See Also : http://secunia.com/advisories/20574/

Solution

At time of writing there is no update available. Filter access to the FTP service, so that it can be used by trusted sources only.

Severity

Classification

CVE CVE-2006-2961
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ActFax Server Multiple Remote Buffer Overflow Vulnerabilities
Firefox XSL Parsing Vulnerability (Win)
Colasoft Capsa Malformed SNMP V1 Packet Remote Denial of Service Vulnerability
Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Win)
Dnsmasq Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities