CVE-2007-6263 (netkit

CVE-2007-6263 (netkit_ftpd)
BugsAlert Home > CVE-2007-6263 (netkit_ftpd)




The dataconn function in ftpd.c in netkit ftpd (netkit-ftpd) 0.17, when certain modifications to support SSL have been introduced, calls fclose on an uninitialized file stream, which allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via some types of FTP over SSL protocol behavior, as demonstrated by breaking a passive FTP DATA connection in a way that triggers an error in the server's SSL_accept function. NOTE: the netkit ftp issue... Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6263 Learn more about CVE-2007-6263 (netkit_ftpd)


Tags: cve-2007-6263 netkit ftpd

Related Items
CVE-2008-5702 (kernel)
TROJ_BHO.OP
VU#800113: Multiple DNS implementations vulnerable to cache poisoning
Brief: Microsoft patches database, Office flaws
Mandriva Security Update Fixes Kdegraphics Code Execution Issues
CVE-2008-2625 (database_10g, database_9i)
CVE-2008-1499 (cPanel)

CVE-2007-6263 (netkit_ftpd)