[5379] in bugtraq
DOS PC FTP SERVER
daemon@ATHENA.MIT.EDU (Efrain Torres Mejia)
Sat Oct 11 20:36:06 1997
Date: Sat, 11 Oct 1997 17:50:40 -0500
Reply-To: Efrain Torres Mejia <etorres@pollux.javeriana.edu.co>
From: Efrain Torres Mejia <etorres@POLLUX.JAVERIANA.EDU.CO>
To: BUGTRAQ@NETSPACE.ORG
Ok, so here is another stupid bug.
Im sure this will work on others pc ftp servers for windoze
Impact: Anybody from outside can shutdown your pc ftp server.
And if u are under win3.1 the system will crash.
Program: WinQVT/NET
Version: All versions.. 16 and 32 bits
Solution.. dont use it or upgrade
Exploit: Just Send a OOB (Out of Band) to port 21,
Exploit for dummies: Take any winnuke, open it and read the code,
when u find a "139" change it for a "21".
OK.
I know this is stupid....... :P. But maybe somebody will need it.. who
knows...
.LoW _ _
|\ | _ |(_`|_'
| \|(_)|,_)|_.
Efrain 'ET' Torres
et@insomnia.org
