[18219] in bugtraq
Re: Memory leakage in proftpd leads to remote DoS
daemon@ATHENA.MIT.EDU (Dmitry Alyabyev)
Wed Dec 20 16:11:58 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <32556085055.20001220042937@al.org.ua>
Date: Wed, 20 Dec 2000 04:29:37 +0200
Reply-To: Dimitry <dimitry@al.org.ua>
From: Dmitry Alyabyev <dimitry@AL.ORG.UA>
X-To: Wojciech Purczynski <wp@ELZABSOFT.PL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.30.0012191428370.13265-100000@alfa.elzabsoft.pl>
Tuesday, December 19, 2000, 3:58:03 PM, Wojciech Purczynski wrote:
WP> Proftpd has memory leakage bug if it executes SIZE FTP command.
WP> Using 5000 SIZE commands causes proftpd to consume over 300kB of memory.
WP> Exploiting this bug with more SIZE commands gives us simple DoS attack.
WP> Anonymous access is sufficient to use SIZE commands and to exploit this
WP> bug.
Anyway, anybody could deny SIZE command as workaround:
<Limit SIZE>
Deny All
</Limit>
--
Dimitry
