Vulnerabilities > CVE-2007-1567 - Buffer-Overflow vulnerability in WarFTP Username Stack-Based

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
war-ftp-daemon
critical
exploit available

Summary

Stack-based buffer overflow in War FTP Daemon 1.65, and possibly earlier, allows remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors, as demonstrated by warftp_165.tar by Immunity. NOTE: this might be the same issue as CVE-1999-0256, CVE-2000-0131, or CVE-2006-2171, but due to Immunity's lack of details, this cannot be certain.

Vulnerable Configurations

Part Description Count
Application
War_Ftp_Daemon
1

Exploit-Db

  • descriptionWarFTP 1.65 (USER) Remote Buffer Overflow SEH Overflow Exploit. CVE-2007-1567. Remote exploit for windows platform
    idEDB-ID:3482
    last seen2016-01-31
    modified2007-03-15
    published2007-03-15
    reporterUmesh Wanve
    sourcehttps://www.exploit-db.com/download/3482/
    titleWarFTP 1.65 - USER Remote Buffer Overflow SEH Overflow Exploit
  • descriptionWarFTP 1.65 (USER) Remote Buffer Overflow Exploit (win2k SP4). CVE-2007-1567. Remote exploit for windows platform
    idEDB-ID:3474
    last seen2016-01-31
    modified2007-03-14
    published2007-03-14
    reporterWinny Thomas
    sourcehttps://www.exploit-db.com/download/3474/
    titleWarFTP 1.65 USER Remote Buffer Overflow Exploit win2k SP4
  • descriptionWarFTP 1.65 (USER) Remote Buffer Overlow Exploit (multiple targets). CVE-2007-1567. Remote exploit for windows platform
    idEDB-ID:3570
    last seen2016-01-31
    modified2007-03-25
    published2007-03-25
    reporterniXel
    sourcehttps://www.exploit-db.com/download/3570/
    titleWarFTP 1.65 USER Remote Buffer Overlow Exploit multiple targets