FTP: Serv-U LIST -l Command Buffer Overflow
This signature detects attempts to exploit a known vulnerability against a Serv-U FTP server. Attackers can submit a maliciously crafted LIST command to the server and execute arbitrary code.
Extended Description
Reportedly Serv-U is affected by a remote buffer overflow vulnerability in the list parameter. This issue is due to a failure of the application to properly validate buffer boundaries during processing of user input. Successful exploitation would immediately produce a denial of service condition in the affected process. This issue may also be leveraged to execute code on the affected system with the privileges of the user that invoked the vulnerable application, although this has not been confirmed.
Affected Products
Rhino_software serv-u
References
BugTraq: 10181
CVE: CVE-2004-1992
URL: http://www.securiteam.com/windowsntfocus/5ZP0G2KCKA.html http://www.serv-u.com/
Short Name
FTP:SERVU:LIST-OVERFLOW
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
FTP
Keywords
-l Buffer CVE-1999-0349 CVE-2004-1992 Command LIST Overflow Serv-U bid:10181
Release Date
07/28/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Rhino_software
CVSS Score
7.5
5.0