icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Xlight FTP Server < 1.53 RETR Command Remote Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running Xlight FTP server. There is a bug in the way this server handles arguments to the RETR command that may allow an attacker to trigger a buffer overflow against this server, potentially allowing him to disable this server remotely or to execute arbitrary code.

Solution

Upgrade Xlight Server to version 1.53 or later.