<<< Date Index >>>     <<< Thread Index >>>

Vulnerability in 3Com 3CServer v1.1



Object:
Vulnerability in 3CServer v1.1, free utility for windows32, from 3Com.

Details:
While old, this free utility is still proposed from the 3Com site, so
it's worth mentionning this.
There are buffer overflows in many of the FTP commands supported,
leading to various heap overflows.
The application has a TFTP server as well, that might be vulnerable
too but I didn't check.
To be able to make use of the vulnerability one needs to be authentificated,
but the anonymous account is sufficient and created by default.

I don't know if any fix will be ever released, 3Com didn't bother answering me.

mandragore

Attachment: 3csploit.c
Description: Binary data