Rapid7 Vulnerability & Exploit Database

SUSE-SA:2003:051: lftp

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE-SA:2003:051: lftp

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

12/15/2003

Created

07/25/2018

Added

11/08/2005

Modified

11/18/2015

Description

The the flexible and powerful FTP command-line client lftp is vulnerable to two remote buffer overflows. When using lftp via HTTP or HTTPS to execute commands like 'ls' or 'rels' specially prepared directories on the server can trigger a buffer overflow in the HTTP handling functions of lftp to possibly execute arbitrary code on the client-side. Please note, to exploit these bugs an attacker has to control the serverside of the context and the attacker will only gain access to the account of the user that is executing lftp.

There is no temporary workaround known.

Please download the update package for your distribution and verify its integrity by the methods listed in section 3) of this announcement. Then, install the package using the command "rpm -Fhv file.rpm" to apply the update. Our maintenance customers are being notified individually. The packages are being offered to install from the maintenance web.

Solution(s)

References

SUSE-SA:2003:051
http://www.novell.com/linux/security/advisories/2003_051_lftp.html

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;