Robo-FTP Response Processing Buffer Overflow Vulnerability Network Vulnerability

Summary

This host has installed Robo-FTP and is prone to Buffer Overflow Vulnerability.

Impact

Successful exploitation will let the user execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in a denial-of-service condition.

Solution

Upgrade to version 3.7.0 or later, For updates refer to http://www.robo-ftp.com/download

Insight

The flaw is due to a boundary error when processing certain responses from the FTP server. This can be exploited to overflow a global buffer by tricking a user into connecting to a malicious FTP server.

Affected

Robo-FTP Client version 3.6.17 and prior.

References

http://en.securitylab.ru/nvd/388275.php
http://secunia.com/advisories/37452

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4103
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apache mod_proxy content-length buffer overflow
Adobe Reader 'XFDF' File Buffer Overflow Vulnerability (Mac OS X)
Adobe Air Buffer Overflow Vulnerability (Mac OS X)
ALLMediaServer Request Handling Stack Buffer Overflow Vulnerability
Adobe Flash Professional JPG Object Processing BOF Vulnerability (Mac OS X)

Take action and discover your vulnerabilities