1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: PCMan FTP Server PUT Command BO

Attack: PCMan FTP Server PUT Command BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

An attacker could exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Additional Information

PCMan's FTP Server is an FTP server application available for Microsoft Windows platforms.

The application is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data passed to the 'PUT' command.

An attacker could exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • PCMan's FTP Server 2.07 is vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube