FTP: FlashGet FTP PWD Command Stack Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the IE FlashGet application. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.

Extended Description

FlashGet is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. FlashGet 1.9 is vulnerable; other versions may also be affected.

Affected Products

Flashget flashget

References

BugTraq: 30685

CVE: CVE-2014-5211

URL: http://www.flashget.com

Short Name
FTP:OVERFLOW:S2C-PATH-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
FTP
Keywords
Buffer CVE-2014-5211 Command FTP FlashGet Overflow PWD Stack bid:30685
Release Date
11/19/2008
Supported Platforms

srx-branch-19.3

vsrx3bsd-19.2

srx-19.4

vsrx3bsd-19.4

srx-branch-19.4

vsrx-19.4

vsrx-19.2

srx-19.3

srx-branch-12.3

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx-12.3

vmx-19.3

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Flashget

CVSS Score

6.8

Found a potential security threat?