[16701] in bugtraq
[EXPL] EFTP vulnerable to two DoS attacks
daemon@ATHENA.MIT.EDU (Aviram Jenik)
Mon Sep 11 13:01:57 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: 7bit
Message-Id: <01d301c01c0e$4d85ad20$0201a8c0@aviram>
Date: Mon, 11 Sep 2000 18:35:31 +0200
Reply-To: Aviram Jenik <aviram@BEYONDSECURITY.COM>
From: Aviram Jenik <aviram@BEYONDSECURITY.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
The following security advisory is sent to the securiteam mailing list, and
can be found at the SecuriTeam web site: http://www.securiteam.com
EFTP vulnerable to two DoS attacks
----------------------------------------------------------------------------
SUMMARY
<http://www.eftp.org/> EFTP is an FTP server and client solution that
allows encrypted FTP connections between the providing FTP server and the
client. The product contains two security vulnerabilities that allow a
remote attacker to cause a Denial of Service attack against the product.
DETAILS
First attack:
Send a buffer of 2100 characters upon connection will crash the server.
Second attack:
Connect to the server with a non-FTP program (something you write by
yourself). Send some characters, and disconnect without sending a '\r\n'.
The server will crash immediately.
Vendor status:
Vendor was contacted on the 26th of August; no response was received since
then.
ADDITIONAL INFORMATION
The security hole was discovered by <mailto:expert@securiteam.com>
SecuriTeam.
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any
kind.
In no event shall we be liable for any damages whatsoever including direct,
indirect, incidental, consequential, loss of business profits or special
damages.
====================
--
Aviram Jenik
Beyond Security Ltd.
http://www.BeyondSecurity.com
http://www.SecuriTeam.com
