FlashGet FTP PWD Response Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running FlashGet, which is prone to Remote Buffer Overflow Vulnerability.

Impact

Successful exploitation will allow execution of arbitrary code by tricking a user into connecting to a malicious ftp server. Impact Level : Application

Solution

Upgrade to FlashGet version 3.3 or later For updates refer to http://www.flashget.com/index_en.htm

Insight

Error exist when handling overly long FTP PWD responses.

Affected

FlashGet 1.9 (1.9.6.1073) and prior versions on Windows (All).

References

http://osvdb.org/show/osvdb/47457
http://www.frsirt.com/english/advisories/2008/2381

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-4321

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Windows)
ClamAV Denial of Service Vulnerability (Linux)
Adobe Reader PDF Handling Denial Of Service Vulnerability (Linux)
Abyss httpd DoS
AT-TFTP Server Long Filename BoF Vulnerability

Take action and discover your vulnerabilities