exploits , vulnerabilities , articles , RhinoSoft Serv-U FTP Server SITE CHMOD Buffer Overflow Vulnerability

Title	RhinoSoft Serv-U FTP Server SITE CHMOD Buffer Overflow Vulnerability
Published	2004-02-16-12:00AM
Updated	2004-04-15-08:05PM
Class	Boundary Condition Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	Discovery of this issue is credited to Some Guy <maillist@bastart.eu.org>. This issue may also have been independently discovered by kkqq <kkqq@0x557.org>.
Vulnerable	RhinoSoft ServU 5.0 .0.4 RhinoSoft ServU 4.1 .0.11 RhinoSoft ServU 4.1
Not Vulnerable
Code	The following proof-of-concept example will reportedly cause a server crash: SITE CHMOD 666 \...UUUUUUUUUUUUUUUUUUUUUUUUUUUUUUUU CORE has developed a working commercial exploit for their IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild. The following exploit code has been supplied: /data/vulnerabilities/exploits/thcservu.c /data/vulnerabilities/exploits/exp_servu_site_chmod.c
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-04 Rae Media Web Based Contact Management Login SQL Injection Vulnerability
• 2008-12-04 Nagios External Commands and Adaptive Commands Unspecified Vulnerability
• 2008-12-04 Z1Exchange SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-12-04 mvnForum Cross Site Scripting Vulnerability
• 2008-12-04 i-Net Solution Orkut Clone SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-12-04 Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
• 2008-12-04 Jbook SQL Injection Vulnerability
• 2008-12-04 SquirrelMail Malformed HTML Mail Message HTML Injection Vulnerability
• 2008-12-04 HP-UX Unspecified Local Denial Of Service Vulnerability
• 2008-12-04 Netrw Vim Script Information Disclosure Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Fri, 05 Dec 2008 17:38:32 +0000