[Plugins-writers] GlobalSCAPE Secure FTP Server User Input Overflow nasl script

• Previous message: George A. Theall: "Re: [Plugins-writers] Missing CVE IDs"
• Next in thread: George A. Theall: "Re: [Plugins-writers] GlobalSCAPE Secure FTP Server User Input Overflow nasl script"
• Reply: George A. Theall: "Re: [Plugins-writers] GlobalSCAPE Secure FTP Server User Input Overflow nasl script"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

GlobalSCAPE Secure FTP Server 3.0.2 and prior versions are affected by a
buffer overflow found in the user-supplied input. An attacker must first be
authenticated to the server before they can execute arbitrary commands.

References:
- http://www.securityfocus.com/bid/13454
- http://www.osvdb.org/16049

Nasl is attached,
Kind regards
Gareth
 
gareth@private
www.sensepost.com

• application/octet-stream attachment: globalscapeftp_user_input.nasl

_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers

• Previous message: George A. Theall: "Re: [Plugins-writers] Missing CVE IDs"
• Next in thread: George A. Theall: "Re: [Plugins-writers] GlobalSCAPE Secure FTP Server User Input Overflow nasl script"
• Reply: George A. Theall: "Re: [Plugins-writers] GlobalSCAPE Secure FTP Server User Input Overflow nasl script"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Wed Jul 06 2005 - 03:29:22 PDT