8 lines
No EOL
561 B
Text
8 lines
No EOL
561 B
Text
source: http://www.securityfocus.com/bid/747/info
|
|
|
|
|
|
WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results in the overflow.
|
|
|
|
This vulnerability may be exploited by a remote authenticate attacker to execute arbitrary code in the context of the affected service.
|
|
|
|
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/19570.tgz |