(Sun Issues T-Patches) WU-FTPD wu_fnmatch() Globbing Error Lets Remote Users Deny Service - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (File Transfer/Sharing) > Wu-ftpd

Vendors: WU-FTPD Development Group

(Sun Issues T-Patches) WU-FTPD wu_fnmatch() Globbing Error Lets Remote Users Deny Service

SecurityTracker Alert ID: 1014042

SecurityTracker URL: http://securitytracker.com/id/1014042

CVE Reference: CVE-2005-0256 (Links to External Site)

Date: May 24 2005

Impact: Denial of service via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 2.6.1, 2.6.2; possibly earlier versions

Description: iDEFENSE reported a vulnerability in WU-FTPD. A remote authenticated user can cause denial of service conditions.

The wu_fnmatch() function in 'wu_fnmatch.c' does not properly process strings containing an asterik ('*') character. A remote authenticated user can supply a string with a large number of asterik characters to cause the target system to consume excessive resources.

A demonstration exploit command is provided:

ftp> dir ***************************************************************
***************************************************************
***************************************************************
**.*

The vendor was notified on February 9, 2005, without response.

Adam Zabrocki (pi3 / pi3ki31ny) discovered this vulnerability.

The original advisory is available at:

http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities

Impact: A remote user can cause the ftp daemon to consume excessive resources on the target system.

Solution: Sun has issued preliminary T-patches for Solaris 9, available at:

http://sunsolve.sun.com/tpatches

SPARC

* Solaris 9 T-patch T114564-05

x86 Platform

* Solaris 9 T-patch T114565-05

Solaris 7 and 8 are not affected. Solaris 10 is vulnerable. For Solaris 10, the vendor has described a workaround in their advisory at:

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1

Vendor URL: sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1 (Links to External Site)

Cause: Input validation error

Underlying OS: UNIX (Solaris - SunOS)

Message History: This archive entry is a follow-up to the message listed below.

WU-FTPD wu_fnmatch() Globbing Error Lets Remote Users Deny Service

Source Message Contents

Date: Tue, 24 May 2005 00:56:33 -0400
Subject: http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1



#  Sun Alert ID: 57795
# Synopsis: Security Vulnerability in the WU-FTPD "wu_fnmatch" Function May Result in a Denial of Service (DoS)
# Category: Security
# Product: Solaris
# BugIDs: 6239487
# Avoidance: Workaround, T-Patch
# State: Engineering Complete
# Date Released: 20-May-2005
# Date Closed:
# Date Modified: 23-May-2005

CVE: CAN-2005-0256

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC