TNFTPD Multiple Signal Handler Remote Superuser Compromise Vulnerabilities

TNFTPD Multiple Signal Handler Remote Superuser Compromise Vulnerabilities

It is reported that TNFTPD is susceptible to multiple remote superuser compromise vulnerabilities. These vulnerabilities are all derived from improper signal handler operations. Signals can be delivered to the vulnerable FTPD by a remote attacker via out-of-band TCP data (OOB).

These vulnerabilities may allow an anonymous remote attacker to gain superuser privileges on computer hosting the affected software.

TNFTPD versions prior to 10 Aug 2004 are reported vulnerable. All versions of Lukemftpd are reported vulnerable. NetBSD version 1.6.2 and prior, NetBSD-2.0 prior to 15 Aug 2004, as well as NetBSD-current prior to 10 Aug 2004 are reported vulnerable as well.