FTP: "blueskies" Password
This signature detects attempts to login to an ftp server using the password blueskies. WFTPD version 2.34 is vulnerable. Attackers can use the password blueskies to perform a WFTP MKD buffer overflow attack and execute arbitrary commands.
Extended Description
WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results in the overflow. This vulnerability may be exploited by a remote authenticate attacker to execute arbitrary code in the context of the affected service.
Affected Products
Texas_imperial_software wftpd
Short Name
FTP:PASSWORD:FTPPASS-BLUESKIES
Severity
Warning
Recommended
False
Recommended Action
None
Category
FTP
Keywords
"blueskies" CVE-1999-0950 Password bid:747
Release Date
04/25/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Texas_imperial_software
CVSS Score
10.0