Serv-U SITE CHMOD Command Multiple Vulnerabilities

high Nessus Plugin ID 12037

Language:

Synopsis

The remote FTP server is affected by a buffer overflow vulnerability.

Description

The remote host is running Serv-U FTP Server.

There is a bug in the way the server handles arguments to the SITE CHMOD requests that could allow an attacker to trigger a buffer overflow or corrupt memory in the server and disable it remotely or to potentially execute arbitrary code on the host.

Note that successful exploitation requires access to a writable directory and will result in code running with Administrator or SYSTEM privileges by default.

Solution

Upgrade to Serv-U FTP Server version 4.2 or later.

See Also

https://seclists.org/bugtraq/2004/Jan/249

https://seclists.org/fulldisclosure/2004/Feb/918

Plugin Details

Severity: High

ID: 12037

File Name: ftp_servu_overflow.nasl

Version: 1.34

Type: remote

Family: FTP

Published: 2/2/2004

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 8.5

Temporal Score: 7

Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:serv-u:serv-u

Required KB Items: ftp/servu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 1/24/2004

Vulnerability Publication Date: 1/24/2004

Exploitable With

Metasploit (Serv-U FTP Server Buffer Overflow)

Reference Information

CVE: CVE-2004-2111, CVE-2004-2533

BID: 9483, 9675