SapporoWorks Black JumboDog FTP Server Buffer Overflow Vulnerability

Black JumboDog is reported to contain a buffer overflow vulnerability in its FTP server. This issue results from insufficient boundary checks performed by the application when processing user-supplied data. This issue can be exploited before authenticating to the FTP server.

This issue may lead to arbitrary code execution if an attacker can direct program execution to attacker supplied memory locations containing malicious shellcode. The attacker may ultimately gain unauthorized access to a vulnerable computer in the context of the FTP server process.

Version 3.6.1 is reported vulnerable. Other prior versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus