[19674] in bugtraq
Re: Multiple vendors FTP denial of service
daemon@ATHENA.MIT.EDU (jedi@CLARANET.FR)
Fri Mar 16 13:23:29 2001
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 8bit
Message-ID: <20010315230011.AF38BD913@mail.fr.clara.net>
Date: Thu, 15 Mar 2001 23:00:11 GMT
Reply-To: jedi@CLARANET.FR
From: jedi@CLARANET.FR
X-To: Jeff Dafoe <jeffd@evcom.net>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <NDBBIOPEKLHMHCDKLPLPIEBHDLAA.jeffd@evcom.net>
Jeff Dafoe écrit:
> In an ironic twist, PureFTPd (of which you are apparently the author), is
> indeed vulnerable to this globbing bug, using variants of the string you
> previously posted.
0.96 is available on Sourceforge and shouldn't be vulnerable to this.
--
-=- Frank DENIS aka Jedi/Sector One <j@c9x.org> -=-
"If Bill Gates had a dime for every time a Windows box crashed...
... Oh, wait a minute, he already does."
