Preemptive Protection against FileCOPA FTP Server Buffer Overflow Vulnerability
| Check Point Reference: | CPAI-2007-009 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Secunia Research: 25/07/2006 | |
| Industry Reference(s): | CVE-2006-3768 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? FileCOPA version 1.01 (released on 2006-07-18) | ||
| Vulnerability Description FileCOPA FTP server is an FTP server application for Microsoft Windows used for anonymous operations. A denial of service vulnerability has been reported in FileCOPA FTP Server. The vulnerability could be exploited by remote attackers to crash the application via a specially crafted FTP command sent to an affected server. |
||
|
Update/Patch Available Upgrade to FileCOPA version 1.01 (released on 2006-07-21): http://www.filecopa.com/download.html |
|
|
Vulnerability Details The vulnerability is caused due to a buffer overflow error in the FTP service (filecpnt.exe) when handling overly long arguments passed to certain FTP commands (CWD, DELE, MDTM and MKD). A remote attacker can exploit this flaw via a specially crafted FTP command with an overly long string in its parameter. Successful exploitation may allow an attacker to create a denial of service condition or execute arbitrary code on an affected system. |
Protection Overview
Overly long FTP commands may cause a buffer overflow on an affected FTP server. The protection addresses this issue by validating the length of the commands and blocking them if they exceed a certain length. No update is required to address this vulnerability.
Users of VPN-1 NGX R62, R61, R60 and InterSpect NGX are protected against this vulnerability if the FTP protection for blocking overly long commands addressed in the Protection section of CPAI-2006-151 has been applied.
To configure the defense, select your product from the list below and follow the related protection steps.