Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Attachmate Reflection FTP Client LIST Command Remote Heap Buffer Overflow Vulnerability
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
This host is installed with Attachmate Reflection FTP Client and is prone to buffer overflow vulnerability.
Insight
Insight
The flaw is due to boundary error in the Reflection FTP client in rftpcom.dll, which fails to process filenames within a directory listing.
Affected Software
Affected Software
Attachmate Reflection 2008 Attachmate Reflection 2011 R1 before 15.3.2.569 Attachmate Reflection 2011 R2 before 15.4.1.327 Attachmate Reflection 14.1 SP1 before 14.1.1.206 Attachmate Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186
Solution
Solution
Upgrade to the latest version or apply the fix, ***** NOTE : Ignore this warning, if above mentioned patch is applied already. *****
Common Vulnerabilities and Exposures (CVE)
References
- http://secunia.com/advisories/46879
- http://xforce.iss.net/xforce/xfdb/71330
- http://www.securitytracker.com/id?1026340
- http://www.exploit-db.com/exploits/18119/
- http://support.attachmate.com/techdocs/2288.html
- http://support.attachmate.com/techdocs/2502.html
- http://support.attachmate.com/techdocs/1708.html
- http://support.attachmate.com/techdocs/1708.html