[15297] in bugtraq
Re: Yet another heap overflow in wu-ftpd and so on...
daemon@ATHENA.MIT.EDU (portal)
Sat Jun 10 05:20:55 2000
Message-Id: <20000608213113.6492.qmail@securityfocus.com>
Date: Thu, 8 Jun 2000 21:31:13 -0000
Reply-To: portal <portal@SECURITY.IS>
From: portal <portal@SECURITY.IS>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.10.10006071215070.9028-100000@squirrel.tpi.pl>
>similar command as above 'grep' can see it clearly. It's
>rather obvious that there's an overflow in optional
>feature introduced in recent wu-ftpd
>versions, called 'internal ls'. But this problem has been
>discovered by someone else (I'm not sure who did it,
>someone from teso or Lam3rZ) days
>ago. Sorry, anyway :)
I guess it was me :) I think I spotted it in April/May last
year while auditing 2.5.0, and told somebody in teso about
it. It's nothing in peculiar, and has too many
requirements. One has to create a symbolic link in a
directory and list it with the 'internal ls'.
Additionally, it's a heap overflow. Have fun with it ;)
Sincerely,
portal@security.is
- www.security.is -
