Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> AIX FTPd buffer overflow


Vulnerability Assessment Details

AIX FTPd buffer overflow

Vulnerability Assessment Summary
Checks if the remote FTPd can be buffer overflown

Detailed Explanation for this Vulnerability Assessment

It was possible to make the remote FTP server
crash by issuing this command :

CEL aaaa[...]aaaa

This problem is known has the 'AIX FTPd' overflow and
may permit the remote user to easily gain access to the
root (super-user) account on the remote system.

Solution : If you are using AIX FTPd, then read
IBM's advisory number ERS-SVA-E01-1999:004.1,
or contact your vendor for a patch.

Network Security Threat Level: High

Networks Security ID: 679

Vulnerability Assessment Copyright: This script is Copyright (C) 1999 Renaud Deraison

Cables, Connectors

Finisar FCLF-8520-3 Copper 1000Base-T SFP Transceiver 7xAvailable
$45.0
Finisar FCLF-8520-3 Copper 1000Base-T SFP Transceiver 7xAvailable pictureBrocade VA-40FC BR-VA40FC-1008 40 Ports 8GB Switch with 40 8GB SFP 2xAvailable
$795.0
Brocade VA-40FC BR-VA40FC-1008 40 Ports 8GB Switch with 40 8GB SFP 2xAvailable pictureGenuine ALCATEL LUCENT OS6450-XNI-U2 10 Gigabit SFP+ Module 2xAvailable
$235.5
Genuine ALCATEL LUCENT OS6450-XNI-U2 10 Gigabit SFP+ Module 2xAvailable pictureDell DL-5020-0004 Brocade BR-5040-0001 32 Active Ports SFP Fabric license
$185.0
Dell DL-5020-0004 Brocade BR-5040-0001 32 Active Ports SFP Fabric license picture


Discussions

No Discussions have been posted on this vulnerability.