Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Serv-U FTP Server 'site chmod' Stack Overflow Lets Remote Users Execute Arbitrary Codee
Categorie: Vulnerability
Posted: 2004-01-28 by ReCall
Views: 346
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A stack overflow vulnerability was reported in the Serv-U FTP server. A remote user can gain privileges on the system.

It is reported that a remote authenticated user with access to a writable directory can invoke the 'site chmod' command with a specially crafted filename to trigger the overflow and execute arbitrary code on the target system. The code will run with the privileges of the Serv-U process (reportedly to be administrator or system privileges in typically cases).

Impact: A remote authenticated user can execute arbitrary code with the privileges of the Serv-U process.

Solution: It is reported that version 5.0 is not affected.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=678

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES