[11556] in bugtraq
No subject found in mail header
daemon@ATHENA.MIT.EDU (Anonymous)
Sat Aug 28 13:59:53 1999
Message-Id: <199908262324.BAA31765@mail.replay.com>
Date: Fri, 27 Aug 1999 01:24:07 +0200
Reply-To: Anonymous <nobody@REPLAY.COM>
From: Anonymous <nobody@REPLAY.COM>
X-To: bugtraq@netspace.org
To: BUGTRAQ@SECURITYFOCUS.COM
Hi ppl,
I've been browsing through the ftpd code and the overflow
is really there. But as soon as I made some tests,
(using CWD function), the vulnerable buffer seems
to be out of stack space, which turns to be impossible
to reach the return address. I'm not that sure about
that because I was warned about that bug from a friend
of mine, but if it's really true, this problem will
not mean anything as a security matters (BeroFTPD and
WUftpd are running from inetd so it wont be a dos).
stanley
programmer
