• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Code-Crafters Ability Server FTP STOR And APPE Arguments Remote Buffer Overflow Vulnerability

Ability Server is reported prone to a remote buffer overflow vulnerability. This issue affects the FTP component of the application and arises due to insufficient boundary checks performed by the FTP server.

A successful attack can result in memory corruption leading to a crash, however, if an attacker is able to overwrite sensitive memory addresses, they could execute code on a computer. Arbitrary code execution occurs in the context of the FTP process and may result in unauthorized access to the vulnerable computer.

Ability Server versions 2.34 and prior were identified to be vulnerable to this issue.