FileZilla FTP Client < 2.2.30a Multiple Buffer Overflow Vulnerabilities

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is affected by
several remote buffer overflow vulnerabilities.

Description :

According to its version, the FileZilla FTP client installed on the
remote host is affected by one buffer overflow vulnerability in the
transfer queue and another when storing settings in the registry.
Details on the issues are currently not available so it is unclear
whether either can be exploited remotely.

See also :

http://sourceforge.net/projects/filezilla/

Solution :

Upgrade to FileZilla client version 2.2.30a or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 24016 (filezilla_2230a.nasl)

Bugtraq ID: 22057

CVE ID: CVE-2007-0315

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now