Detections
Analytics

GuildFTPd Long SITE Command Overflow

high Nessus Plugin ID 15851

Language:

Synopsis

The remote FTP server is vulnerable to a buffer overflow attack.

Description

The remote ftp server seems to be vulnerable to a denial of service attack through the SITE command when handling specially long requests. An attacker can exploit this flaw in order to crash the affected service or possibly execute arbitrary code.

Solution

There is no known solution at this time.

See Also

https://seclists.org/bugtraq/2001/May/250

Plugin Details

Severity: High

ID: 15851

File Name: guildftpd_site_cmd_overflow.nasl

Version: 1.19

Type: remote

Family: FTP

Published: 11/30/2004

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: ftp/login

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 5/27/2001

Reference Information

CVE: CVE-2001-0770

BID: 2782