SunFTP GET Request Remote Overflow

High Nessus Plugin ID 11373


The remote host has an application that is affected by a buffer overflow vulnerability.


Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands by sending more than 2100 characters to the server.


Switching to another FTP server, SunFTP is discontinued.

Plugin Details

Severity: High

ID: 11373

File Name: sunftpd_overflow.nasl

Version: $Revision: 1.14 $

Type: remote

Family: FTP

Published: 2003/03/13

Modified: 2013/08/23

Dependencies: 10092

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:U/RC:C

Vulnerability Information

Patch Publication Date: 2000/09/01

Vulnerability Publication Date: 2000/09/01

Reference Information

CVE: CVE-2000-0856

BID: 1638

OSVDB: 1539