Ricoh software security vulnerability

Started Sep 28, 2012 | Discussions thread
ForumParentFirstPreviousNextNext unread
Flat view
pthortron
Forum MemberPosts: 99
Like?
Ricoh software security vulnerability
Sep 28, 2012

I ran across this at work and just thought I would pass it along in case anyone is using Ricoh software with FTP server.

Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command.

It looks like they only tested the exploit on 4.5.0.1 but other versions may be affected. You have to name an FTP log file with sr10.exe to be affected.

To make sure you cannot be affected, start SR10.exe an make sure the log file name is blank (which it should be by default).

Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5002

Cheers,

Peter

ForumParentFirstPreviousNextNext unread
Flat view
Post (hide subjects)Posted by
ForumParentFirstPreviousNextNext unread
Keyboard shortcuts:
FForum PPrevious NNext WNext unread UUpvote SSubscribe RReply QQuote BBookmark post MMy threads
Color scheme? Blue / Yellow