WatchMouse keeps watch for the latest security news and vulnerability reports. Check here on a regular basis for updates or sign up using the form on the right to receive our security news updates via email.
View a full list of the most recent vulnerabilities here.
View a full list of the most recent vulnerabilities here.
Ipswitch WS_FTP Professional HTTP Server Response Format String Vulnerability
|
12 Mar 2010 |
| Ipswitch WS_FTP Professional client is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may exploit this issue to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will likely result in a denial-of-service condition. WS_FTP Professional 12 is vulnerable; other versions may also be affected. |
|
| Securityfocus.com | |
