[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ArGoSoft FTP server remote heap overflow

To: "Steven M. Christey" <coley@xxxxxxxxx>
Subject: Re: ArGoSoft FTP server remote heap overflow
From: Jerome Athias <jerome.athias@xxxxxxx>
Date: Wed, 01 Mar 2006 18:07:59 +0100

Hi,

as i replied privately to you, yes i think we can say that. You could
consider it as an update...
Note that the vendor was contacted without response.

Regards
/JA

Steven M. Christey a écrit :
> A buffer overflow in DELE was originally reported to Bugtraq by CorryL
> in March 2005, for ArGoSoft FTP 1.4.2.8 (CVE-2005-0696):
>
>   http://www.securityfocus.com/archive/1/392653
>
> According to CorryL's disclosure timeline, no patch had been released
> by the disclosure date.
>
> So, is this a rediscovery of that older issue, for the most recent
> version?
>
> - Steve
>
>
>

References:
- Re: ArGoSoft FTP server remote heap overflow
  - From: Steven M. Christey

Prev by Date: Evolution Emailer DoS
Next by Date: Evil side of Firefox extensions
Previous by thread: Re: ArGoSoft FTP server remote heap overflow
Next by thread: FreeBSD Security Advisory FreeBSD-SA-06:10.nfs
Index(es):
- Date
- Thread