Bugtraq mailing list archives

Re: ArGoSoft FTP server remote heap overflow

From: Jerome Athias <jerome.athias () free fr>
Date: Wed, 01 Mar 2006 18:07:59 +0100

Hi,

as i replied privately to you, yes i think we can say that. You could
consider it as an update...
Note that the vendor was contacted without response.

Regards
/JA

Steven M. Christey a écrit :

A buffer overflow in DELE was originally reported to Bugtraq by CorryL
in March 2005, for ArGoSoft FTP 1.4.2.8 (CVE-2005-0696):

  http://www.securityfocus.com/archive/1/392653

According to CorryL's disclosure timeline, no patch had been released
by the disclosure date.

So, is this a rediscovery of that older issue, for the most recent
version?

- Steve

Current thread:

Re: ArGoSoft FTP server remote heap overflow Steven M. Christey (Mar 01)
- Re: ArGoSoft FTP server remote heap overflow Jerome Athias (Mar 01)