[9710] in bugtraq
Re: Pro/wuFTPD DoS
daemon@ATHENA.MIT.EDU (Chris Wedgwood)
Sun Feb 21 23:27:23 1999
Date: Sun, 21 Feb 1999 11:01:07 +1300
Reply-To: Chris Wedgwood <chris@CYBERNET.CO.NZ>
From: Chris Wedgwood <chris@CYBERNET.CO.NZ>
X-To: CyberPsychotic <fygrave@TIGERTEAM.NET>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.GSO.4.05.9902191943530.20436-100000@kyrnet.kg>; from
CyberPsychotic on Fri, Feb 19, 1999 at 07:56:59PM +0500
On Fri, Feb 19, 1999 at 07:56:59PM +0500, CyberPsychotic wrote:
> I think I will probably write it again, since I don't I have it saved
> somewhere. There's nothing fascinating actually. This seem to be a heap
> buffer overflow, which smashes pointers to the dirnames (thus you could
> probably get access to files outsite chrooted envinronment):
Could someone please clue me in on how this might be so, assuming
*ftpd correctly chroot's itself then relinquishes permissions?
-cw
