Robo-FTP Response Processing Buffer Overflow Vulnerability Network Vulnerability

Summary

This host has installed Robo-FTP and is prone to Buffer Overflow Vulnerability.

Impact

Successful exploitation will let the user execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in a denial-of-service condition.

Solution

Upgrade to version 3.7.0 or later, For updates refer to http://www.robo-ftp.com/download

Insight

The flaw is due to a boundary error when processing certain responses from the FTP server. This can be exploited to overflow a global buffer by tricking a user into connecting to a malicious FTP server.

Affected

Robo-FTP Client version 3.6.17 and prior.

References

http://en.securitylab.ru/nvd/388275.php
http://secunia.com/advisories/37452

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4103

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

DesignWorks Professional '.cct' File BOF Vulnerability
Adobe Shockwave Player ActiveX Control BOF Vulnerability
Avaya WinPDM Multiple Buffer Overflow Vulnerabilities
Adobe Reader/Acrobat Multiple Vulnerabilities - Nov08 (Win)
Anzio Web Print Object ActiveX Control Remote BOF Vulnerability

Take action and discover your vulnerabilities