Core FTP < 2.2 build 1769 Multiple Buffer Overflows
High Nessus Plugin ID 65789
SynopsisAn FTP client on the remote host is affected by multiple buffer overflow vulnerabilities.
DescriptionThe version of Core FTP installed on the remote host is prior to 2.2 build 1769 (2.2.1768.0). It is, therefore, affected by multiple buffer overflow vulnerabilities because user-supplied input is not properly validated when handling directory names. A remote attacker could potentially exploit this issue with specially crafted directory names, resulting in a denial of service or code execution subject to the user's privileges.
Note that the fix for this issue is version 2.2 Build 1769 while the actual file version is 2.2.1768.
SolutionUpgrade to Core FTP 2.2 build 1769 (2.2.1768.0) or later.