Ipswitch WS_FTP Server CPWD Remote Buffer Overflow Vulnerability

Ipswitch WS_FTP Server, is a FTP server for Microsoft Windows platforms.

Ipswitch WS FTP Server contains a remote buffer overflow vulnerability related to the CPWD command, used to modify an authenticated user's password. Oversized parameters may corrupt process memory, possibly leading to the execution of arbitrary code as the server process.

This issue has been reported in WS_FTP Server 3.1.1. Earlier versions may share this vulnerability, this has not however been confirmed.


Privacy Statement
Copyright 2010, SecurityFocus