FTP: ServU Timezone MDTM Buffer Overflow
This signature detects RhinoSoft Serv-U FTP 4.3 and earlier. These versions contain a buffer overflow vulnerability in the MDTM command that enables attackers to execute malicous code on a remote server.
Extended Description
Serv-U FTP Server has been reported prone to a remote stack based buffer overflow vulnerability when handling time zone arguments passed to the MDTM FTP command. The problem exists due to insufficient bounds checking. Ultimately an attacker may leverage this issue to have arbitrary instructions executed in the context of the SYSTEM user.
Affected Products
Rhino_software serv-u
References
BugTraq: 9751
CVE: CVE-2004-0330
URL: http://www.serv-u.com/ http://www.securityfocus.com/archive/1/355537
Short Name
FTP:VULN:SERVU-FTP-BO
Severity
Minor
Recommended
False
Recommended Action
None
Category
FTP
Keywords
Buffer CVE-2004-0330 MDTM Overflow ServU Timezone bid:9751
Release Date
01/29/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3725
False Positive
Unknown
Vendors
Rhino_software
CVSS Score
10.0