Title: SunFTP Buffer Overflow Vulnerability
Severity: HIGH
Description:
SunFTP is a small freeware ftp server created by XS4ALL Data. It is possible to launch a DoS attack against the server by sending more than 2100 characters to the server, which will cause it to crash. This is the result of a buffer overrun condition, where excessive user input overwrites critical data in the application's memory. It may be possible for a hacker to execute arbitrary code on the target as well, but this is uncomfirmed.
Affected Products:
- Rasmus J.P. Allenheim SunFTP 1.0.0 Build 9
References:
- Beyond Security Ltd.: SecuriTeam Homepage
- XS4ALL Data: SunFTP Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
