Object: Vulnerability in 3CServer v1.1, free utility for windows32, from 3Com. Details: While old, this free utility is still proposed from the 3Com site, so it's worth mentionning this. There are buffer overflows in many of the FTP commands supported, leading to various heap overflows. The application has a TFTP server as well, that might be vulnerable too but I didn't check. To be able to make use of the vulnerability one needs to be authentificated, but the anonymous account is sufficient and created by default. I don't know if any fix will be ever released, 3Com didn't bother answering me. mandragore
Attachment:
3csploit.c
Description: Binary data