Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability

---

• From: Valdis.Kletnieks@xxxxxx
• Date: Thu, 29 Nov 2007 17:19:49 -0500

---

On Thu, 29 Nov 2007 14:46:06 +0300, 3APA3A said:

In order to exploit this vulnerability you need to force victim to run
attacker-supplied BAT file. It's like forcing user to run
attacker-supplied .sh script under Unix.

And oddly enough, the *very next mail* from Bugtraq said:

FreeBSD-SA-07:10.gtar Security Advisory
The FreeBSD Project

Topic: gtar directory traversal vulnerability

...

III. Impact

An attacker who can convince an user to extract a specially crafted
archive can overwrite arbitrary files with the permissions of the user
running gtar. If that user is root, the attacker can overwrite any
file on the system.

Apparently, somebody at FreeBSD thinks "can be exploited if you trick the
user into doing something" is a valid attack vector.

Attachment: pgpyMLMsyxMBv.pgp
Description: PGP signature

---

• Follow-Ups:
  • Re[2]: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: 3APA3A
  • Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Vincent Archer
  • Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Steve Shockley

• References:
  • Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: Rajesh Sethumadhavan
  • Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
    • From: 3APA3A

• Prev by Date: AST-2007-026 - SQL Injection issue in cdr_pgsql
• Next by Date: [USN-549-1] PHP vulnerabilities
• Previous by thread: Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Next by thread: Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re[2]: Microsoft FTP Client Multiple Bufferoverflow Vulnerability ... archive can overwrite arbitrary files with the permissions of the user ... running gtar. ... the attacker can overwrite any ... you need vulnerability in gtar in order to exploit. ... (Bugtraq) Re[2]: Microsoft FTP Client Multiple Bufferoverflow Vulnerability ... archive can overwrite arbitrary files with the permissions of the user ... running gtar. ... If that user is root, the attacker can overwrite any ... (Bugtraq) Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability ... archive can overwrite arbitrary files with the permissions of the user ... running gtar. ... If that user is root, the attacker can overwrite any ... (Bugtraq)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2007-11