Detections
Analytics

ArGoSoft FTP Server RNTO Command Remote Buffer Overflow

medium Nessus Plugin ID 21326

Language:

Synopsis

The remote FTP server is affected by a buffer overflow vulnerability.

Description

The remote host is using ArGoSoft FTP Server, an FTP server for Windows.

The version of ArGoSoft FTP Server installed on the remote host contains a buffer overflow vulnerability that can be exploited by an authenticated, but possibly anonymous, user with a specially crafted RNTO command to crash the affected application or execute arbitrary code on the affected host.

Solution

Unknown at this time.

See Also

https://seclists.org/bugtraq/2006/May/22

Plugin Details

Severity: Medium

ID: 21326

File Name: argosoft_ftp_rnto_overflow.nasl

Version: 1.21

Type: remote

Family: FTP

Published: 5/4/2006

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 4.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 5/1/2006

Reference Information

CVE: CVE-2006-2170

BID: 17789