VULHUB ™

hsftp is prone to a locally exploitable buffer overrun vulnerability due to insufficient bounds checking of hostname arguments supplied as command line input. In situations where hsftp is installed setuid root and not configured to drop privileges, this could be exploited to execute arbitrary code with elevated privileges.

hsftp is prone to a locally exploitable buffer overrun vulnerability due to insufficient bounds checking of hostname arguments supplied as command line input. In situations where hsftp is installed setuid root and not configured to drop privileges, this could be exploited to execute arbitrary code with elevated privileges.