Re: cqure.net.20020408.netware_nwftpd.a

From: Brian Eckman (ECKMA009at_private)
Date: Wed May 08 2002 - 11:54:43 PDT

Next message: Marc Maiffret: "ADVISORY: MSN Messenger OCX Buffer Overflow"

Previous message: Terry Lavoie: "RE: Multiple Vulnerabilities in MDaemon + WorldClient"
Maybe in reply to: Patrik Karlsson: "cqure.net.20020408.netware_nwftpd.a"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Problem:           The Netware FTP server has a DOS vulnerability.
>
> Threat:            An attacker could cause the server cpu to spike
>                   at 100% cpu hogging the server and causing a DOS,
>                   preventing legitimate users access to the server.
>
> Affected Software: Netware FTP server.
>
> Platform:          Netware 6.0 SP 1 verified.
>
> Solution:          Install patch from Novell as soon as it becomes
>                   available.
>
<snip>

This problem is fixed in nwftpd6.exe, dated April 26, 2002.

Reference: 
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2962252.htm

Download Update At:
http://support.novell.com/servlet/betafiledownload?file=/ftf/nwftpd6.exe/

Brian

Next message: Marc Maiffret: "ADVISORY: MSN Messenger OCX Buffer Overflow"
Previous message: Terry Lavoie: "RE: Multiple Vulnerabilities in MDaemon + WorldClient"
Maybe in reply to: Patrik Karlsson: "cqure.net.20020408.netware_nwftpd.a"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed May 08 2002 - 17:06:07 PDT