|
Family: FTP --> Category: destructive_attack
ftpd strtok() stack overflow Vulnerability Scan
Vulnerability Scan Summary strock() stack overflow
Detailed Explanation for this Vulnerability Test
The remote FTP server seems to be vulnerable to a stack
overflow when calling the strok() function.
For instance, the command :
STAT a a a a a a a (...) a a a a
Will make it crash.
A possible hacker may use this flaw to execute arbitrary code on
the remote host.
Solution : change ftp servers
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|