AIX 5.3 TL 9 : ftpd (IZ83252)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote AIX host is missing a security patch.

Description :

There is a buffer overflow vulnerability in the ftp server. By issuing
an overly long NLST command, an attacker may cause a buffer overflow.

The successful exploitation of this vulnerability allows a remote
attacker to get the DES encrypted user hashes off the server if FTP is
configured to allow write access using Anonymous account or another
account that is available to the attacker.

The following executable is vulnerable :

/usr/sbin/ftpd.

See also :

http://www.exploit-db.com/exploits/14456/
http://www.exploit-db.com/exploits/14409/
http://aix.software.ibm.com/aix/efixes/security/ftpd_advisory.asc

Solution :

Install the appropriate interim fix.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: AIX Local Security Checks

Nessus Plugin ID: 63822 ()

Bugtraq ID:

CVE ID: CVE-2010-3187

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now