WuFTP.SITE.EXEC.Attempt
Description
This indicates an attempt to exploit a stack overflow vulnerability in Washington University FTP daemon (wu-ftpd).
Wu-ftpd is a popular file transfer protocol daemon from Washington University. Due to inadequate user input validation, a remote attacker can execute arbitrary commands on a target machine via specially crafted FTP commands.
Affected Products
Wu-ftpd versions 2.6.0 and earlier.
Impact
System compromise: attackers can remotely execute arbitrary commands as root.
Recommended Actions
Upgrade to the latest version of wu-ftpd that does not have the vulnerability.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |