Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> ArGoSoft FTP Server DELE Command Remote Buffer Overrun Vulnerability


Vulnerability Assessment Details

ArGoSoft FTP Server DELE Command Remote Buffer Overrun Vulnerability

Vulnerability Assessment Summary
Checks for DELE command remote buffer overrun in ArGoSoft FTP Server

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote FTP server is affected by a buffer overflow flaw.

Description :

According to its banner, the version of ArGoSoft FTP Server installed
on the remote host is affected by a heap buffer overflow that can be
triggered by a malicious user with delete rights who issues a DELE
command with an argument exceeding 2000 characters.

See also :

http://www.securityfocus.com/archive/1/archive/1/426081/100/0/threaded

Solution :

Unknown at this time.

Network Security Threat Level:

Medium / CVSS Base Score : 5
(AV:R/AC:H/Au:R/C:C/A:C/I:C/B:N)

Networks Security ID: 12755

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors

10N8620 FIBER CHANNEL DUAL PORT IBM server fiber optics card
$6.58
10N8620 FIBER CHANNEL DUAL PORT IBM server fiber optics card pictureIBM 8231-E2B 8350P PSeries Server System Power 7 710
$1369.0
IBM 8231-E2B 8350P PSeries Server System Power 7 710 pictureIBM Genuine 4GB PC3-10600 DDR3 Server RAM Memory Samsung M393B5170EH1-CH9
$5.0
IBM Genuine 4GB PC3-10600 DDR3 Server RAM Memory Samsung M393B5170EH1-CH9  pictureMushkin IBM 49Y1436 8GB PC3-10600 Server Ram Memory ECC DDR3 FRU 49Y1466
$10.0
Mushkin IBM 49Y1436 8GB PC3-10600 Server Ram Memory ECC DDR3 FRU 49Y1466 picture


Discussions

No Discussions have been posted on this vulnerability.