RE: Raptor Firewall FTP Bounce vulnerability

From: Martin O'Neal (bugtraqat_private)
Date: Wed Apr 17 2002 - 01:12:55 PDT

Next message: Bradford L. Barrett: "Re: Remote buffer overflow in Webalizer"

Previous message: Philippe Bourgeois: "RE: An alternative method to check LKM backdoor/rootkit"
Maybe in reply to: Roy Hills: "Raptor Firewall FTP Bounce vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hiya,

As an observation, It's worth noting that by default the Raptor / SEF code
disables FTP PORT connections to low ports (<1024), so although it might be
possible to probe a remote machine, the utility of the exercise is limited.

Regards,
Martin O'Neal
Senior Security Consultant



-----Original Message-----
From: Roy Hills [mailto:Roy.Hills@nta-monitor.com]
Sent: 15 April 2002 15:12
To: bugtraqat_private
Subject: Raptor Firewall FTP Bounce vulnerability

Next message: Bradford L. Barrett: "Re: Remote buffer overflow in Webalizer"
Previous message: Philippe Bourgeois: "RE: An alternative method to check LKM backdoor/rootkit"
Maybe in reply to: Roy Hills: "Raptor Firewall FTP Bounce vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Apr 17 2002 - 18:42:49 PDT