WS_FTP Server long command buffer overflow (FTP_Mkd_Overflow)

About this signature or vulnerability

RealSecure Server Sensor, RealSecure Desktop Protector, RealSecure Network, BlackICE Agent for Server, RealSecure Guard, RealSecure Sentry, BlackICE PC Protection, BlackICE Server Protection, Proventia Network MFS, IBM Security Server Protection for Windows, Proventia-G 1.1 and earlier, Proventia Network IDS, Proventia Desktop, Proventia Server IPS for Linux technology, RealSecure Desktop Protector 3.6, Proventia Network IPS, Virtual Server Protection for Vmware:

This signature detects a user's attempt during an FTP session to use the MKD command referencing a directory name longer than the system-configurable maximum file name length.

Default risk level

 High

Sensors that have this signature

RealSecure Server Sensor: 7.0, RealSecure Desktop Protector: 3.6, RealSecure Network: 7.0, BlackICE Agent for Server: 3.6, RealSecure Guard: 3.6, RealSecure Sentry: 3.6, BlackICE PC Protection: 3.6.cbd, BlackICE Server Protection: 3.6.cbd, Proventia Network MFS: 1.0, IBM Security Server Protection for Windows: 1.0.914.0, IBM Security Server Protection for Windows: 2.1.14.2400, Proventia-G 1.1 and earlier: G Series, Proventia Network IDS: A Series, Proventia Desktop: 8.0.614.1, RealSecure Desktop: baseline, Proventia Server IPS for Linux technology: 1.0, RealSecure Desktop Protector 3.6: baseline, Proventia Network IPS: 2.0, Virtual Server Protection for Vmware: 1.0

Systems affected

Ipswitch WS_FTP Server: 2.0.2

Type

Unauthorized Access Attempt

Vulnerability description

How to remove this vulnerability

References