IBM AIX FTP Client Local Buffer Overflow Vulnerability

IBM AIX FTP Client Local Buffer Overflow Vulnerability

The IBM AIX FTP application is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

A nonprivileged user may trigger this vulnerability to execute code with superuser privileges. Failed exploit attempts will likely result in a denial of service.

IBM AIX 5.2 and 5.3 are vulnerable.