WarFTPd CWD/MKD Command Overflow

This script is Copyright (C) 2003-2011 Digital Defense, Inc.


Synopsis :

The remote FTP service is prone to a buffer overflow attack.

Description :

The version of the War FTP Daemon running on this host is vulnerable
to a buffer overflow attack. This is due to improper bounds checking
within the code that handles both the CWD and MKD commands. By
exploiting this vulnerability, it is possible to crash the server.

See also :

http://archives.neohapsis.com/archives/bugtraq/2000-01/0480.html
http://archives.neohapsis.com/archives/bugtraq/2000-01/0507.html

Solution :

Upgrade to WarFTPd version 1.67-4 or later.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P)
CVSS Temporal Score : 3.5
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: FTP

Nessus Plugin ID: 11205 (DDI_warftpd_cwd_overflow.nasl)

Bugtraq ID: 966

CVE ID: CVE-2000-0131