Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

AIX FTPd libc Library Remote Overflow

Critical

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

It is possible to make the remote FTP server crash by issuing this command : CEL aaaa[...]aaaa. This problem is known as the 'AIX FTPd' overflow and may allow the remote user to easily gain access to the root (super-user) account on the remote system.

Solution

See IBM's advisory number ERS-SVA-E01-1999:004.1 or contact your vendor for a patch.