[20380] in bugtraq
Re: Multiple vendors FTP denial of service
daemon@ATHENA.MIT.EDU (Alun Jones)
Mon Apr 23 13:44:09 2001
Message-ID: <20010423142720.11917.qmail@securityfocus.com>
Date: Mon, 23 Apr 2001 14:27:20 -0000
Reply-To: alun@TEXIS.COM
From: Alun Jones <alun@TEXIS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
> a quick note, Winsock FTPD 3.00 pro and 2.41
(maybe prior) are vulnerable
Thanks for the note - we released 3.00 R4 last week
to fix this vulnerability. [We now refuse to list any
parameter list containing "/.."]
> PS: Serv-U ftp doesn't seem to be vulnerable
No duh - Serv-U doesn't bother to expand wildcards
in non-terminal path elements. I spent a good couple
of hours putting the code into WFTPD to do that, for
one particular customer's requirement. Note - there
is no "glob" in Windows (at least, not that works this
way), and so we're apparently _not_ vulnerable to the
other glob problem reported elsewhere.
Alun.
~~~~
