Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and previous versions allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alexander v. lukyanov lftp 2.6.5 |
||
alexander v. lukyanov lftp 2.6.6 |
||
alexander v. lukyanov lftp 2.6.3 |
||
alexander v. lukyanov lftp 2.6.4 |
||
alexander v. lukyanov lftp 2.3 |
||
alexander v. lukyanov lftp 2.6.7 |
||
alexander v. lukyanov lftp 2.6.8 |
||
alexander v. lukyanov lftp 2.4.9 |
||
alexander v. lukyanov lftp 2.5.2 |
||
alexander v. lukyanov lftp 2.6.0 |
||
alexander v. lukyanov lftp 2.6.9 |