Skip navigation
Menu
Security

Multiple Buffer Overflow Vulnerabilities in SmartFTP FTP Client for Windows

Reported June 09, 2003, by ::Operash::.

 

 

VERSIONS AFFECTED

 

  • SmartFTP FTP Client for Windows version 1.0.973

 

DESCRIPTION

 

Two buffer-overflow vulnerabilities in SmartFTP FTP Client for Windows can result in the execution of arbitrary code on the vulnerable computer. These two vulnerabilities consist of the following:
 
·         If a server responds to a PWD command request with a reply to that contains a long address, a buffer overflow occurs on the stack area. 
·         If a server returns a File List that contains a long string, the buffer overrun occurs on the heap area. 
 

VENDOR RESPONSE

 

SmartFTP has released version 1.0.976, which doesn't contain these vulnerabilities.

 

CREDIT                                                                                                       
Discovered by :: Operash ::.

TAGS: Security
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
DevSecOps concept
90% of Java Services in Production Have Vulnerability Risk, DevSecOps Report Finds
Apr 20, 2024
Businesswoman challenges concept and gender obstacles
Women in Cybersecurity Face Barriers to Hiring, Advancement
Apr 15, 2024
person typing on keyboard with icons for certificates
Top IT Certifications for a Career in Finance
Apr 12, 2024
employee working on a laptop with AI
Why AI Coding Assistants May Be Greatest Cybersecurity Threat Facing Your Business
Mar 26, 2024