Check Point Advisories

Preemptive Protection against SmartFTP Banner Handling Buffer Overflow Vulnerability

Check Point Reference: CPAI-2007-024
Date Published: 27 Feb 2007
Severity: Medium
Last Updated: Monday 30 April, 2007
Source: Secunia Advisory: SA24051
Industry Reference:CVE-2007-0790
Protection Provided by:
Who is Vulnerable? SmartFTP Client version 2.0.1002
Vulnerability Description SmartFTP is an FTP client for Microsoft Windows. A buffer overflow vulnerability has been reported in SmartFTP client. The vulnerability could be exploited by remote attackers to execute arbitrary code via a specially crafted banner reply sent to an affected system.
Vulnerability DetailsThe vulnerability is caused due to a buffer overflow error in the FTP service when handling malformed banner replies of FTP servers. A remote attacker can exploit this flaw via an overly long banner sent from a malicious FTP server. Successful exploitation may allow an attacker to execute arbitrary code on an affected system.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK