header-logo
Suggest Exploit
vendor:
WFTPD
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: WFTPD
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

WFTPD Remote Buffer Overflow Vulnerability

WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results in the overflow. This vulnerability may be exploited by a remote authenticate attacker to execute arbitrary code in the context of the affected service.

Mitigation:

Ensure that all user-supplied input is validated and filtered before being used in the application.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/747/info
 
 
WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results in the overflow.
 
This vulnerability may be exploited by a remote authenticate attacker to execute arbitrary code in the context of the affected service.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19570.tgz

Navigation

Suggest Exploit

Services By CQR