Ipswitch WS_FTP Server FTP commands buffer overflow

wsftp-ftp-commands-bo (18296)

High Risk

Description:

WS_FTP Server is vulnerable to a buffer overflow. By sending an FTP command, such as SITE, XMKD, MKD, or RNFR, a remote authenticated attacker could overflow a buffer and cause the FTP server to crash or execute arbitrary code on the system.

Platforms Affected:

• Ipswitch, WS_FTP Server 5.03

Remedy:

Apply the 5.04 patch for this vulnerability, available from the Ipswitch Support Web page. See References.

Consequences:

Gain Access

References:

• Full-Disclosure Mailing List, Mon Nov 29 2004 - 10:37:02 CST , Multiple buffer overlows in WS_FTP Server Version 5.03, 2004.10.14. at http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1330.html.
• Ipswitch Support Web page, WS_FTP Server Version 5.04 Patch at http://www.ipswitch.com/support/ws_ftp-server/releases/wr504.html.
• Ipswitch, Inc Web site, System Requirements at http://www.ipswitch.com/Products/WS_FTP-Server/systemreq.html.
• SecuriTeam Mailing List, Security Holes & Exploits 20 Nov 2004, WS_FTP Server MKD Buffer Overflow (Exploit) at http://www.securiteam.com/exploits/6D00L2KBPG.html.
• BID-11772: Ipswitch WS_FTP Multiple Remote Buffer Overflow Vulnerabilities
• CVE-2004-1135: Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.

Reported:

Nov 29, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page