AOH :: Linux :: Apps A-M

AOH :: Linux :: Apps A-M :: FTPFS.HTM
FTPFS Bounds Checking inadequacy

Vulnerability

    FTPFS

Affected

    FTPFS

Description

    Frank DENIS (Jedi/Sector One) found buffer oveflow in FTPFS (linux
    kernel module).   FTPFS is  a Linux  kernel module,  enhancing VFS
    with  FTP   volume  mounting   capabilities.    However,  it   has
    insufficient bounds checking.  If a user  can enter mount  options
    through a wrapper,  he can take  over the whole  system, even with
    restricted capabilities.

    Here's a simple exploit :

        mount -t ftpfs none /mnt -o ip=127.0.0.1,user=xxxxxxxxxxxxxxxxxxxxxxxxxxxx...

    The previous  command produces  an immediate  reboot (tested  with
    kernel 2.4.2 and FTPFS 0.1.1) .

Solution

    The author is aware of that vulnerability.

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.