Title: Frox FTP Cache Retrieval Buffer Overflow Vulnerability
Severity: HIGH
Description:
Frox is a freely available, open source FTP proxy software package. It is maintained by public domain, and indexed by Sourceforge.
A problem in the software has been discovered that could allow users to gain elevated privileges. The problem is in the handling of long path names.
This problem manifests itself only when the ftp proxy is set to cache ftp downloads. Due to improper bounds checking, it is possible for a file located at the end of a long path name to overflow a buffer in the frox program. This could lead to the overwriting of stack variables, including the return address, and result in the execution of code with the privileges of the frox program.
This makes it possible for a malicious ftp server to spawn a shell allowing local access on a system running the vulnerable software. The frox program is typically not a root-run process.
Affected Products:
- frox frox 0.6.0.0
- frox frox 0.6.1
- frox frox 0.6.2
- frox frox 0.6.3
- frox frox 0.6.4
- frox frox 0.6.5
- frox frox 0.6.6
References:
- frox: frox homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
