icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

TurboFTP 'DELE' FTP Command Remote Buffer Overflow

Medium

Synopsis

The remote FTP server is vulnerable to a remote denial of service attack.

Description

The remote host is running the TurboFTP FTP server. The installed version of TurboFTP is earlier than 1.00.720. Such versions are potentially affected by a remote buffer overflow vulnerability when handling an overly large string that is passed to the 'DELE' FTP command. An attacker, exploiting this flaw, could crash the affected service.

Solution

Upgrade to TurboFTP 1.00.720