Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » SpoonFTP Buffer Overflow Vulnerabilities

SpoonFTP Buffer Overflow Vulnerabilities

by phiber on May 31st, 2001 The SpoonFTP server doesn't correctly apply boundary checks on the 'CWD' and 'LIST' commands. Issueing one of these to the server followed by respectively 530 and 531 bytes of data or more will cause the server to die. Altough in the majority of the attempts internal errors will kill the SpoonFTP process before any data can be passed on to the stack, it is possible to use this to overwrite eip and execute arbitrary code on the target machine.


Introduction:



SpoonFTP is an ftp server from the hand of the makers of SpoonProxy
for the various MS Windows incarnations.



SpoonFTP is available from vendor Pi-Soft's website:

http://www.pi-soft.com



Solution:



Vendor has been notified and has verified the existence of these
problems. SpoonFTP v1.0.0.13 has been released to deal with them.
Users are encouraged to upgrade.



This was tested against SpoonFTP v1.0.0.12 on Win2k.



By SNS Research


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »