Multiple FTPD glob Command Arbitrary Command Execution
Critical Nessus Plugin ID 10821
SynopsisThe remote ftp server is affected by a remote code execution vulnerability.
DescriptionThe FTPD glob vulnerability manifests itself in handling the glob command. The problem is not a typical buffer overflow or format string vulnerability, but a combination of two bugs - an implementation of the glob command that does not properly return an error condition when interpreting the string 'bracket', and then frees memory which may contain user-supplied data.
An attacker who is able to log in to a vulnerable server, including users with anonymous access, can exploit this to execute arbitrary code with the privileges of the FTP service.
SolutionContact your vendor for a fix.