PT-2016-6673 · Micro Focus · Rumba Ftp
Published
2016-10-27
·
Updated
2017-09-03
·
CVE-2016-5764
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Micro Focus Rumba FTP versions prior to 4.5 (HF 14668)
Description
The issue allows for arbitrary code execution due to a buffer overflow in the Micro Focus Rumba FTP 4.X client. This can occur when a client connects to a malicious server, enabling the corruption of the stack.
Recommendations
For versions prior to 4.5 (HF 14668), update to Rumba FTP 4.5 (HF 14668) to resolve the issue.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rumba Ftp