|
|
| |
| IglooFTP PRO is "an award winning FTP Client. Its main features are to be easy to use and intuitive when used by novice, but powerful and fully configurable in the hand of experienced users". IglooFTP is vulnerable to a buffer overflow in multiple places (as they all use the same buffer). |
| |
Credit:
The information has been provided by Peter Winter-Smith.
|
| |
Vulnerable systems:
* IglooFTP PRO version 3.8
Immune systems:
* IglooFTP PRO version 3.9
By sending a 220 response with a long buffer as the result, it is possible to overflow a local buffer used by the FTP client, allowing a FTP server to cause the client to execute arbitrary code.
A sample buffer would be:
220 [1020 bytes 'A'][4 bytes EBP][4 bytes EIP to 'Call ESP'*][41 bytes ShellCode]
|
|
|
|
|
