FTP.Command.Buffer.Overflow
Description
This indicates an attempt to exploit a buffer overflow vulnerability in WS_FTP Server.
The vulnerability is caused by a failure of the application to properly check user-supplied data. It may allow a remote authenticated attacker to execute arbitrary code via the crafted XCRC or XMD5 or XSHA1 command.
Affected Products
Ipswitch WS_FTP Server v5.04, v5.05
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
The vendor has issued a fix (5.05 Hotfix 1). The Ipswitch advisory is available at:
http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |