| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | WS_FTP 2007 Professional SCP handling format string vulnerability |
| From: | "Michal Bucko" <michal.bucko@hack.pl> |
| Date: | Fri, 26 Jan 2007 23:55:08 +0100 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
Synopsis: WS_FTP 2007 Professional SCP handling format string vulnerability
Product: WS_FTP 2007 Professional
Vendor: Ipswitch
I. Background
"[..]Transfer files anywhere, anytime, with complete security.
* Lightning fast transfer speeds
* Industry leading security
* Time saving features include schedule, backup, and email
notifications[..]"
II. Problem Description
Remote code execution is possible.
III. Details
SCP handling module is vulnerable to format string vulnerability.
Opening a specially crafted SCP file with WS_FTP 2007 script handler
might lead to arbitrary code execution. The specially crafted file
uses the WS_FTP script command "SHELL" and executes the file with
the specially crafted name. The file is access using "file://".
Kind regards,
Michal Bucko (sapheal)
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Dexia website security alert, Jos Kirps |
|---|---|
| Next by Date: | Re: [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed, Matteo Beccati |
| Previous by Thread: | Dexia website security alert, Jos Kirps |
| Next by Thread: | [ MDKSA-2007:029 ] - Updated libsoup packages fix DoS vulnerability, security |
| Indexes: | [Date] [Thread] [Top] [All Lists] |