RhinoSoft Serv-U FTP Server MDTM Command Time Argument Buffer Overflow Vulnerability

Proof of concept and exploit code has been provided. "lion" <lion@cnhonker.net> has released an updated version of the exploit servu_ftpd_mdtm.c:

An exploit (servu_mdtm_overflow.pm) has been released as part of the MetaSploit Framework 2.0.

CORE has developed a working commercial exploit for their IMPACT
product. This exploit is not otherwise publicly available or known
to be circulating in the wild.


 

Privacy Statement
Copyright 2010, SecurityFocus