Info

Disclosure

Jul 22, 2004

Discovery

Apr 02, 2004

Dates

Exploit

Jul 22, 2004

Solution

Unknown

Description

A local format string flaw exists in OpenFTPD. The SITE MSG command fails to validate user input resulting in a format string error. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 0.30.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Team OpenFTPD	OpenFTPD	0.30.1
		0.29.x
		0.28

References

Security Tracker: 1010823
Bugtraq ID: 10830
Secunia Advisory ID: 12174
ISS X-Force ID: 16843
CVE ID: 2004-2523 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0350.html
http://archives.neohapsis.com/archives/bugtraq/2004-08/0017.html
Vendor URL: http://www.openftpd.org:9673/openftpd/

Credit

Thomas Wana - greuffvoid.at - VOID.AT Security

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Team OpenFTPD

OpenFTPD

References

Credit