[12955] in bugtraq
Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability
daemon@ATHENA.MIT.EDU (Ussr Labs)
Tue Dec 14 12:16:26 1999
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <NCBBKFKDOLAGKIAPMILPGEGGCBAA.labs@ussrback.com>
Date: Tue, 14 Dec 1999 03:57:08 -0300
Reply-To: Ussr Labs <labs@USSRBACK.COM>
From: Ussr Labs <labs@USSRBACK.COM>
X-To: BUGTRAQ <bugtraq@securityfocus.com>
To: BUGTRAQ@SECURITYFOCUS.COM
Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability
PROBLEM
UssrLabs found a Local/Remote DoS Attack in War FTP Daemon 1.70
the buffer overflow is caused by a Multiples connections at the same time
(over 60) in the ftp server , and some characters in the login name.
There is not much to expand on.... just a simple hole
For the source / binary of this remote / local D.O.S
Go to: http://www.ussrback.com/
Vendor Status:
Contacted.
Vendor Url: http://www.jgaa.com
Program Url: http://www.jgaa.com/warftpd.htm
Credit: USSRLABS
SOLUTION
Nothing yet.
u n d e r g r o u n d s e c u r i t y s y s t e m s r e s e a r c h
http://www.ussrback.com
