KLA10152
ACE vulnerability in SFTP
Updated: 06/01/2019
Detect date
?
02/15/2006
Severity
?
High
Description

A format string was found in the multiple SFTP products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors.

Affected products

AttachmateWRQ Reflection for Secure IT UNIX Server versions 6.0.0.8 and earlier
AttachmateWRQ Reflection for Secure IT Windows Server versions 6.0 build 37 and earlier
F-Secure SSH Server for Windows versions 5.3 build 34 and earlier
F-Secure SSH Server for UNIX versions from 3.0 to 5.0.8 SSH
Tectia Server versions 4.4.0, 4.3.6 and earlier
SSH Shell Server versions 3.2.9 and earlier

Solution

Update to latest version

Impacts
?
ACE 
[?]
Related products
SSH Secure Shell for Workstations
CVE-IDS
?