Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

TurboFTP 'DELE' FTP Command Remote Buffer Overflow

Medium

Synopsis

The remote FTP server is vulnerable to a remote denial of service attack.

Description

The remote host is running the TurboFTP FTP server. The installed version of TurboFTP is earlier than 1.00.720. Such versions are potentially affected by a remote buffer overflow vulnerability when handling an overly large string that is passed to the 'DELE' FTP command. An attacker, exploiting this flaw, could crash the affected service.

Solution

Upgrade to TurboFTP 1.00.720