BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

TurboFTP Server Buffer Overflow

Disclosed October 3, 2012    Fully Patched

Vulnerability Description:

TurboFTP is vulnerable to a buffer overflow that can be triggered by supplying a long IP octet string. Attackers that exploit this vulnerability would be able to execute arbitrary code in the context of TurboFTP.

Vendors:

TurboSoft

Vulnerable Software/Devices:

TurboFTP 1.30.823

Vulnerability Severity:

High

Exploit Availability:

N/A

Exploit Impact:

Remote Code Execution
Remote Code Execution Attackers that exploit this vulnerability would be able to execute arbitrary code within the context of TurboFTP. If TurboFTP is running with elevated privileges, then an attacker would potentially be able to take full control of the computer.

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 17197 - TurboFTP Server Buffer Overflow (Zero-Day)

Mitigation:

No mitigation currently exists.

Links:

CVE(s):

None

Leave a Reply