Title: 3Com 3CServer Multiple Remote Buffer Overflow Vulnerabilities
Severity: CRITICAL
Description:
3Com 3CServer is an FTP and TFTP server designed to aid in performing upgrades on devices. 3CServer is shipped with the Transcend network management software and is available from the 3Com Web site.
Multiple remote buffer overflow vulnerabilities affect 3Com 3CServer. These issues are due to a failure of the application to securely copy user-supplied input into process buffers.
The problems present themselves when the server receives FTP commands of excessive length. Apparently due to a failure to securely implement copying functions the application copies potentially malicious, excessive data into heap-based buffers. It is reported that the affected server runs with SYSTEM privileges, which may increase the impact of this issue.
It should be noted that an attacker must authenticate to the server to exploit these issues, although anonymous access is sufficient.
An attacker may leverage this issue to execute arbitrary code on an affected computer with SYSTEM privileges. This may facilitate unauthorized access or privilege escalation.
Affected Products:
- 3Com 3CServer 1.1.0
References:
- 3Com: 3Com Software Library
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
