[9601] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Pro/wuFTPD DoS

daemon@ATHENA.MIT.EDU (ga)
Tue Feb 16 14:30:26 1999

Date: 	Mon, 15 Feb 1999 15:51:44 -0000
Reply-To: ga <duncan@MULTIMANIA.ORG>
From: ga <duncan@MULTIMANIA.ORG>
To: BUGTRAQ@NETSPACE.ORG

This is the bash path overlow (up to 2.0.0) which has been fixed in bash
v2.02.

See bugtraq archive,
http://geek-girl.com/bugtraq/1998_3/0765.html

						ga

----------
From: Ultor <Ultor@SOWATECH.COM.PL>
To: BUGTRAQ@netspace.org
Subject: Re: Pro/wuFTPD DoS
Date: 13 February 1999 18:18

Hi

> yes,
>
> kills patched ProFTPD dead.
>
> -----snip-----
>
> #!/usr/local/bin/perl
> # ftpd thingy
> # bubba@bubba.org

[CUTED]

> -----snip-----
>
> Ken Williams
> jkwilli2@csc.ncsu.edu


Hmmm i think that the problem here isn't overflow in ProFTPD.
Here is a proof.

first run attached 'sux' to make directories ...

----- snip -------
# pwd
/mnt/
# ./sux
    ok now just cd that directories
# cd A*
[CUTED]
# cd A*
ultor:/mnt/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAA
# cd A*


Welcome to Linux 2.0.35.

ultor login:

----- snip -------

nice heh :)


Greeetz

-------------------------------------------------------------
 "I hack the heads off little girls and put them on my wall"
  ULT0R [Ultor@sowatech.com.pl] - NETWORK SECURITY ADVISER
----------


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9601] in bugtraq

Re: Pro/wuFTPD DoS

daemon@ATHENA.MIT.EDU (ga)Tue Feb 16 14:30:26 1999

daemon@ATHENA.MIT.EDU (ga)
Tue Feb 16 14:30:26 1999