• info
• discussion
• exploit
• solution
• references

gFTP Remote Format String Vulnerability

Solution:
This issue is resolved in version 2.0.8 and later of gFTP.

Several vendors have released advisories and updated packages which address this issue:


Redhat gftp-2.0.7b-3.i386.rpm

• Red Hat 7.1 i386 gftp-2.0.8-1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/gftp-2.0.8-1.i386.rpm

Redhat gftp-2.0.7b-2.i386.rpm

• Red Hat 7.0 i386 gftp-2.0.8-1.i386.rpm
  ftp://updates.redhat.com/7.0/en/os/i386/gftp-2.0.8-1.i386.rpm

Redhat gftp-2.0.6a-3.i386.rpm

• Red Hat 6.2 i386 gftp-2.0.8-1.i386.rpm
  ftp://updates.redhat.com/6.2/en/os/i386/gftp-2.0.8-1.i386.rpm

gFTP gFTP 2.0.7

• Debian 2.2 alpha gftp_2.0.6a-3.1_alpha.deb
  http://security.debian.org/dists/stable/updates/main/binary-alpha/gftp _2.0.6a-3.1_alpha.deb


• Debian 2.2 arm gftp_2.0.6a-3.1_arm.deb
  http://security.debian.org/dists/stable/updates/main/binary-arm/gftp_2 .0.6a-3.1_arm.deb


• Debian 2.2 i386 gftp_2.0.6a-3.1_i386.deb
  http://security.debian.org/dists/stable/updates/main/binary-i386/gftp_ 2.0.6a-3.1_i386.deb


• Debian 2.2 m68k gftp_2.0.6a-3.1_m68k.deb
  http://security.debian.org/dists/stable/updates/main/binary-m68k/gftp_ 2.0.6a-3.1_m68k.deb


• Debian 2.2 ppc gftp_2.0.6a-3.1_powerpc.deb
  http://security.debian.org/dists/stable/updates/main/binary-powerpc/gf tp_2.0.6a-3.1_powerpc.deb


• Debian 2.2 sparc gftp_2.0.6a-3.1_sparc.deb
  http://security.debian.org/dists/stable/updates/main/binary-sparc/gftp _2.0.6a-3.1_sparc.deb


• Immunix 6.2 i386 gftp-2.0.8-1_StackGuard.i386.rpm
  http://immunix.org/ImmunixOS/6.2/updates/RPMS/gftp-2.0.8-1_StackGuard. i386.rpm


• Immunix 7.0 i386 gftp-2.0.8-1_imnx.i386.rpm
  http://immunix.org/ImmunixOS/7.0/updates/RPMS/gftp-2.0.8-1_imnx.i386.r pm


• MandrakeSoft 1.0.1 i386 gftp-2.0.8-1.2mdk.i586.rpm
  ftp://ftp.vlug.org/dists/mandrake/updates/1.0.1/RPMS/gftp-2.0.8-1.2mdk .i586.rpm


• MandrakeSoft 7.1 i386 gftp-2.0.8-1.2mdk.i586.rpm
  ftp://ftp.vlug.org/dists/mandrake/updates/7.1/RPMS/gftp-2.0.8-1.2mdk.i 586.rpm


• MandrakeSoft 7.2 i386 gftp-2.0.8-1.1mdk.i586.rpm
  ftp://ftp.vlug.org/dists/mandrake/updates/7.2/RPMS/gftp-2.0.8-1.1mdk.i 586.rpm


• MandrakeSoft 8.0 i386 gftp-2.0.8-1.1mdk.i586.rpm
  ftp://ftp.vlug.org/dists/mandrake/updates/8.0/RPMS/gftp-2.0.8-1.1mdk.i 586.rpm


• Progeny 1.0 i386 gftp-common_2.0.8-1progeny1_i386.deb
  http://archive.progeny.com/progeny/updates/newton/gftp-common_2.0.8-1p rogeny1_i386.deb


• Progeny 1.0 i386 gftp-gtk_2.0.8-1progeny1_i386.deb
  http://archive.progeny.com/progeny/updates/newton/gftp-gtk_2.0.8-1prog eny1_i386.deb


• Progeny 1.0 i386 gftp-text_2.0.8-1progeny1_i386.deb
  http://archive.progeny.com/progeny/updates/newton/gftp-text_2.0.8-1pro geny1_i386.deb


• Progeny 1.0 i386 gftp_2.0.8-1progeny1_i386.deb
  http://archive.progeny.com/progeny/updates/newton/gftp_2.0.8-1progeny1 _i386.deb