ID de Prueba:	1.3.6.1.4.1.25623.1.0.902821
Categoría:	FTP
Título:	Ricoh DC Software DL-10 FTP Server 'USER' Command Buffer Overflow Vulnerability
Resumen:	Ricoh DC Software DL-10 FTP Server is prone to a buffer overflow; vulnerability.
Descripción:	Summary: Ricoh DC Software DL-10 FTP Server is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw is caused by improper bounds checking by the FTP server when processing malicious FTP commands. This can be exploited to cause a stack-based buffer overflow via an overly long 'USER' FTP command. Vulnerability Impact: Successful exploitation may allow remote attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Affected Software/OS: Ricoh DC Software DL-10 version 4.5.0.1. Other products might be affected as well. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-5002 BugTraq ID: 52235 http://www.securityfocus.com/bid/52235 http://security.inshell.net/advisory/5 http://www.osvdb.org/79691 http://secunia.com/advisories/47912 XForce ISS Database: ricoh-user-bo(73591) https://exchange.xforce.ibmcloud.com/vulnerabilities/73591 Common Vulnerability Exposure (CVE) ID: CVE-2015-6750 http://packetstormsecurity.com/files/133248/Ricoh-FTP-Server-1.1.0.6-Buffer-Overflow.html
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.