Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
FTP:USER:FREEBSD-OFF-BY-ONE-MC |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
FTP |
Keywords |
FreeBSD 8.0 Off By One Heap Memory Corruption |
Release Date |
2015/12/08 |
Update Number |
2585 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
FTP: FreeBSD 8.0 Off By One Heap Memory Corruption
This signature detects attempts to exploit a known vulnerability against FreeBSD 8.0. A successful attack can lead to arbitrary code execution.
Extended Description
Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd.
Affected Products
- Freebsd freebsd 6
- Freebsd freebsd 6.4
- Freebsd freebsd 7.0
- Freebsd freebsd 7.0_beta4
- Freebsd freebsd 7.0-release
- Freebsd freebsd 7.0_releng
- Freebsd freebsd 7.1
- Freebsd freebsd 7.2
- Freebsd freebsd 8.0
- Freebsd freebsd 8.1-prerelease
- Nrl opie 2.10
- Nrl opie 2.11
- Nrl opie 2.2
- Nrl opie 2.21
- Nrl opie 2.22
- Nrl opie 2.3
- Nrl opie 2.32
- Nrl opie 2.4
- Nrl opie 2.4.1
References
- BugTraq: 40403
- CVE: CVE-2010-1938