Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > July 2005 > WhitSoft - SlimFTPd Buffer Overflow Vulnerabilities Could Lead to Remote Code Execution

July 2005

WhitSoft - SlimFTPd Buffer Overflow Vulnerabilities Could Lead to Remote Code Execution

ID: 00620
Ref: 577/05
Date: 25 July 2005:12:12:40
Version: 1
Title: WhitSoft - SlimFTPd Buffer Overflow Vulnerabilities Could Lead to Remote Code Execution
Abstract: WhitSoft have announced a security alert relating to SlimFTPd.
Vendors affected: Whitsoft
Applications affected: Whitsoft

Title
=====
WhitSoft - SlimFTPd Buffer Overflow Vulnerabilities Could Lead to Remote Code Execution


Detail
======

WhitSoft have announced a security alert relating to SlimFTPd. The following
is the text of that alert:

"SECURITY ALERT: SlimFTPd 3.15 and 3.16 have buffer overflow vulnerabilities
that could potentially lead to remote code execution. The exploits are only
possible if the remote user can successfully log in. Users are advised to
upgrade to SlimFTPd 3.17 immediately!"

Version 3.17 of SlimFTPd can be found at the following URL:
http://www.whitsoftdev.com/slimftpd/



  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |