Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> ArGoSoft FTP Server DELE Command Remote Buffer Overrun Vulnerability


Vulnerability Assessment Details

ArGoSoft FTP Server DELE Command Remote Buffer Overrun Vulnerability

Vulnerability Assessment Summary
Checks for DELE command remote buffer overrun in ArGoSoft FTP Server

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote FTP server is affected by a buffer overflow flaw.

Description :

According to its banner, the version of ArGoSoft FTP Server installed
on the remote host is affected by a heap buffer overflow that can be
triggered by a malicious user with delete rights who issues a DELE
command with an argument exceeding 2000 characters.

See also :

http://www.securityfocus.com/archive/1/archive/1/426081/100/0/threaded

Solution :

Unknown at this time.

Network Security Threat Level:

Medium / CVSS Base Score : 5
(AV:R/AC:H/Au:R/C:C/A:C/I:C/B:N)

Networks Security ID: 12755

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors

IBM LENOVO FRU 04W3765 INTEL 2230 WIRELESS-N WIFI MINICARD LC 20200078 4W3765
$13.48
IBM LENOVO FRU 04W3765 INTEL 2230 WIRELESS-N WIFI MINICARD LC 20200078 4W3765 pictureHP 15-f272wm Flyer Red 15.6" Laptop Intel N3540 4GB RAM 500GB HDD WIN 10
$185.0
HP 15-f272wm Flyer Red 15.6HP Mini 210-1100 10.1" LED Intel Atom N475 1.83GHz 2GB RAM 160GB HDD Netbook
$142.99
HP Mini 210-1100 10.1HP 2000-2b44DX 15.6" Laptop AMD E-300 1.3GHz APU Radeon HD 4GB RAM 500GB HDD
$126.99
HP 2000-2b44DX 15.6


Discussions

No Discussions have been posted on this vulnerability.