bftpd Multiple Command Remote Overflow
Critical Nessus Plugin ID 10579
SynopsisThe remote FTP server has a remote buffer overflow vulnerability.
DescriptionThe version of bftpd running on the remote host is vulnerable to a remote buffer overflow attack when issued very long arguments to the SITE CHOWN command. A remote attacker could exploit this issue to crash the FTP server, or possibly execute arbitrary code.
SolutionUpgrade to bftpd version 1.0.24 or later.