HTTP: NetBSD TNFTP fetch_url Command Execution
This signature detects attempts to exploit a known vulnerability against NetBSD TNFTP. A successful attack can lead to arbitrary code execution.
Extended Description
The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a | (pipe) character at the end of an HTTP redirect.
Affected Products
Apple mac_os_x
References
BugTraq: 70792
CVE: CVE-2014-8517
URL: http://seclists.org/oss-sec/2014/q4/459 https://www.freebsd.org/security/advisories/freebsd-sa-14:26.ftp.asc
Short Name
HTTP:NETBSD-TNFTP-CE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2014-8517 Command Execution NetBSD TNFTP bid:70792 fetch_url
Release Date
11/11/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Netbsd
Apple
CVSS Score
7.5