• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Wu-Ftpd S/Key Remote Buffer Overrun Vulnerability

A remotely exploitable buffer overrun vulnerability has been reported in Wu-Ftpd if support for S/Key authentication is enabled. This is due to insufficient bounds checking of externally supplied data during S/Key authentication, allowing remote attackers to corrupt process memory with attacker-supplied values. This could potentially be exploited to execute arbitrary code in the context of the FTP server. It appears that this vulnerability may be exploited prior to authentication.

It is reported that S/Key support is not enabled by default, though some operating system distributions which ship Wu-Ftpd may have it enabled.