Great!
- I followed the post by "titao" searching for bugs yes found a nasty
security issue affecting proFTP but that one would seem to relate to earlier versions
than 1.3.1rc2 currently supported by QNAP. See below.
I am very interested to see if QNAP proFTP is safe to use as I have it opened to the Internet
and I have lots of other files on that box I do not want to compromise. I am not using plain
FTP but do not know if that is enough to keep my box safe!
I extremely do not appreciate to be put in situation by a vendor like QNAP to be forced to
worry if their a *couple of years* old FTP product is secure enough or not. If I wanted to do
BYO NAS I would not have paid lots of money for their equipment. I think this is quite arrogant
and disrespectful for the customer.
"Affected Versions:
ProFTPD 1.2.7
ProFTPD 1.2.8
ProFTPD 1.2.8rc1
ProFTPD 1.2.8rc2
ProFTPD 1.2.9rc1
ProFTPD 1.2.9rc2
Description:
A vulnerability exists in the ProFTPD server that can be triggered by
remote attackers when transferring files from the FTP server in ASCII
mode. The attacker must have the ability to upload a file to the server,
and then attempt to download the same file to trigger the vulnerability.
The vulnerability occurs when a file is being transferred in ASCII mode.
During a transfer of this type, file data is examined in 1024 byte chunks
to check for newline (\n) characters. The translation of these newline
characters is not handled correctly, and a buffer overflow can manifest if
ProFTPD parses a specially crafted file.
The ProFTPD daemon makes an effort to drop superuser privileges to limit
the privilege level associated with any successful attack. However,
X-Force has demonstrated that this security check can be bypassed, and
superuser access can be gained by a remote attacker.
"