[23909] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Bounce vulnerability in SpoonFTP 1.1.0.1

daemon@ATHENA.MIT.EDU (Arne Vidstrom)
Sun Jan 20 17:15:24 2002

From: "Arne Vidstrom" <arne.vidstrom@ntsecurity.nu>
To: <bugtraq@securityfocus.com>
Date: Sun, 20 Jan 2002 03:05:32 +0100
Message-ID: <NLECJAEFKPPNCLPPMHLPMEPMCJAA.arne.vidstrom@ntsecurity.nu>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit

The vulnerability:

The FTP server is vulnerable to the FTP bounce attack, even against ports
lower than 1024.

Vendor Response:

Pi-Soft have created a new version that among other things fix this
vulnerability. Their response was very nice and quick.

/Arne Vidstrom, http://ntsecurity.nu


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[23909] in bugtraq

Bounce vulnerability in SpoonFTP 1.1.0.1

daemon@ATHENA.MIT.EDU (Arne Vidstrom)Sun Jan 20 17:15:24 2002

daemon@ATHENA.MIT.EDU (Arne Vidstrom)
Sun Jan 20 17:15:24 2002