Seagull FTP Client Stack-Based Buffer Overflow Vulnerability

A stack-based buffer overflow vulnerability has been identified in Seagull FTP Client versions through 3.3 Build 409. The issue arises in the FTP directory listing parser, where the client fails to properly validate the length of filenames in responses to the LIST command. This vulnerability allows remote attackers to overwrite the Structured Exception Handler (SEH), potentially leading to arbitrary code execution on the client system.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected client system.

Reproduction

The vulnerability can be reproduced by using an FTP server to send a crafted response to a LIST command that includes an excessively long filename. This can be done using the Metasploit framework, which has a module specifically for exploiting this vulnerability. The Metasploit module handles the exploitation process, including setting up the FTP server, sending the malicious directory listing, and executing the payload.

Remediation

Users are advised to switch to BlueZone Secure FTP, as the Seagull FTP Client product line has been discontinued.