Re: FireWall-1 FTP Server Vulnerability

From: Emiliano Kargieman (core.lists.bugtraq@CORE-SDI.COM)
Date: Fri Feb 18 2000 - 14:19:05 PST

Next message: Daniel Carosone: "UPDATED: NetBSD Security Advisory 2000-001"

Previous message: Elias Levy: "Microsoft signed software can be install software without"
Maybe in reply to: John McDonald: "FireWall-1 FTP Server Vulnerability"
Next in thread: chessat_private: "Re: FireWall-1 FTP Server Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mikael Olsson wrote:

>
> The only solution that even begins to look "good" is to
> completely reassemble the TCP stream and not make "educated"
> guesses about what packet data belongs on what line and in
> which order and state of the FTP protocol.
>
> It doesn't have to be a "proxy" in order to do this, I think.
> You DO need to reassemble the stream completely though.
>

Of course, reassembling the TCP stream without proxing is bound to give you
some headaches too, remember "Insertion, Evasion and D.O.S"?

EK.
--
Emiliano Kargieman <ek@core-sdi.com>
Director de Investigacion - CoreLabs - Core-SDI S.A.
http://www.core-sdi.com

"At any rate, let us not loiter in the arena of hot events."
                                            Tom Robbins, ARA.



--- For a personal reply use emiliano_kargieman@core-sdi.com

Next message: Daniel Carosone: "UPDATED: NetBSD Security Advisory 2000-001"
Previous message: Elias Levy: "Microsoft signed software can be install software without"
Maybe in reply to: John McDonald: "FireWall-1 FTP Server Vulnerability"
Next in thread: chessat_private: "Re: FireWall-1 FTP Server Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:36:04 PDT