Intrusion Prevention

Ipswitch.WS.FTP.HTTP.Server.Response.Format.String

Description

This indicates an attack attempt against a format string vulnerability in Ipswitch WS_FTP Professional.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP response. It allows a remote attacker to execute arbitrary code via sending a crafted web page.

Affected Products

Ipswitch WS_FTP Professional 12

Impact

System Compromise.

Recommended Actions

An update is available from the vendor.
http://www.ipswitchft.com/

CVE References

CVE-2008-3734