Core FTP Filename Processing Boundary Error FTP List Command Response Parsing Remote Overflow
High Nessus Plugin ID 59243
SynopsisAn FTP client on the remote host is affected by a buffer overflow vulnerability.
DescriptionThe version of Core FTP installed on the remote host is less than 2.2 build 1745. It thus is reportedly affected by a buffer overflow vulnerability that can be triggered when it receives a specially crafted FTP LIST command response.
By tricking a user into connecting to a malicious server, a remote attacker may be able to execute arbitrary code on the affected host, subject to the user's privileges.
SolutionUpgrade to Core FTP 2.2 build 1745 or later.