FTPFS缓冲区溢出漏洞

FTPFS缓冲区溢出漏洞

漏洞ID 1106253 漏洞类型 缓冲区溢出
发布时间 2001-03-13 更新时间 2001-06-27
图片[1]-FTPFS缓冲区溢出漏洞-安全小百科CVE编号 CVE-2001-0468
图片[2]-FTPFS缓冲区溢出漏洞-安全小百科CNNVD-ID CNNVD-200106-197
漏洞平台 Linux CVSS评分 7.2
|漏洞来源
https://www.exploit-db.com/exploits/20691
https://www.securityfocus.com/bid/82997
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200106-197
|漏洞详情
FTPFS存在缓冲区溢出漏洞。本地用户借助超长用户名提升根特权。
|漏洞EXP
source: http://www.securityfocus.com/bid/2498/info

FTPFS is a Linux kernel module allowing users to mount remote files from any standard FTP server as a local filesystem.

A version of FTPFS is vulnerable to a buffer overflow leading to a denial of service, and potentially execution of arbitrary code. This overflow can be exploited by any local user with access to the mount command on a system with FTPFS installed.

mount -t ftpfs none /mnt -o ip=127.0.0.1,user=xxxxxxxxxxxxxxxxxxxxxxxxxxxx...
|参考资料

来源:XF
名称:ftpfs-bo
链接:http://xforce.iss.net/static/6234.php
来源:BUGTRAQ
名称:20010313BufferoveflowinFTPFS(linuxkernelmodule)
链接:http://archives.neohapsis.com/archives/bugtraq/2001-03/0163.html

相关推荐: NT Subst.exe Vulnerability

NT Subst.exe Vulnerability 漏洞ID 1104483 漏洞类型 Unknown 发布时间 1999-11-30 更新时间 1999-11-30 CVE编号 N/A CNNVD-ID N/A 漏洞平台 N/A CVSS评分 N/A |漏…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享