Preemptive Protection against CesarFTP and XM Easy Personal FTP Server Buffer Overflow Vulnerabilities
| Check Point Reference: | CPAI-2006-092 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | SecurTeam SecurityFocus |
|
| Industry Reference(s): | CVE-2006-2225 CVE-2006-2961 |
|
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? XM Easy Personal FTP Server Version 4.3 CesarFTP version 0.99g | ||
| Vulnerability Description XM Easy Personal FTP Server fails to validate user-supplied data. Attacker can exploit this issue to execute arbitrary code on the affected server. CesarFTP contains a buffer overflow error in the handling of overly long arguments passed to the MKD command. Remote attackers can compromise a vulnerable system or crash an affected application. |
||
|
Vulnerability Details CesarFTP: The vulnerability is caused by improper checking of the MKD command. By sending an overly long MKD command, a remote attacker could execute arbitrary code on the system or cause the application to crash. XM Easy Personal FTP Server: The vulnerability is specifically in the authentication functionality. By sending an overly long username, a remote attacker could execute arbitrary code on the system or cause the server to crash. |
Protection Overview
Similarly to other FTP servers vulnerabilities, SmartDefense will block these vulnerabilities based on several considerations: FTP patterns (e.g. suspicious login attempt patterns), oversized FTP commands and inspection of the Malicious Code Protector (MCP). Users of VPN-1 NGX R61, R60 and InterSpect NGX are protected against these vulnerabilities if the solution outlined in CPAI-2006-040 has been applied.
To configure the defense, select your product from the list below and follow the related protection steps.