Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 FTP:COMMAND:SLIMFTP-LIST

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 FTP

Keywords

 14339 SlimFTPd LIST Metasploit

Release Date

 2010/05/04

Update Number

 1673

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

FTP: SlimFTPd LIST Concatenation Overflow


This signature detects attempts to exploit a known vulnerability against SlimFTPd. A successful attack allows attackers to execute arbitrary machine code with the privileges of the affected FTP server.

Extended Description

A remote buffer overflow vulnerability affects WhitSoft Development SlimFTPd. The problem presents itself when an authenticated user issues a command with excessive string values as parameters. An attacker can leverage this issue to execute arbitrary machine code with the privileges of the affected FTP server, facilitating unauthorized access to the vulnerable computer.

Affected Products

  • WhitSoft SlimFTPd 3.11.0
  • WhitSoft SlimFTPd 3.12.0
  • WhitSoft SlimFTPd 3.13.0
  • WhitSoft SlimFTPd 3.14.0
  • WhitSoft SlimFTPd 3.15.0
  • WhitSoft SlimFTPd 3.16.0

References

  • BugTraq: 14339
  • CVE: CVE-2005-2373

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out