Preemptive Protection against HP FTP Print Server Buffer Overflow Vulnerability
| Check Point Reference: | CPAI-2007-011 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | FrSIRT/ADV-2006-5081 | |
| Industry Reference(s): | CVE-2006-6742 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? Hewlett-Packard (HP) FTP Print Server version 2.4.5 and prior | ||
| Vulnerability Description A denial of service vulnerability has been reported in Hewlett-Packard (HP) Printers with HP FTP Print Server. The vulnerability could be exploited by remote attackers to crash the application via a specially crafted FTP command sent to an affected server. |
||
|
Vulnerability Details The vulnerability is caused due to an error in the FTP print server when processing malformed 'LIST' commands. A remote attacker can cause the service to crash via an overly long argument passed to the 'LIST' command. Successful exploitation may cause denial of service condition. |
Protection Overview
Overly long FTP commands (LIST) may cause a buffer overflow on an affected FTP server. The protection addresses this issue by validating the length of the commands and blocking them if they exceed a certain length. No update is required to address this vulnerability.
Users of VPN-1 NGX R62, R61, R60 and InterSpect NGX are protected against this vulnerability if the FTP protection for blocking overly long commands addressed in the Protection section of CPAI-2006-151 has been applied.
To configure the defense, select your product from the list below and follow the related protection steps.