acFTP Authentication Issue

From: Matthew Murphy (mattmurphyat_private)
Date: Sat Nov 23 2002 - 17:57:30 PST

Next message: Matthew Murphy: "Multiple phpNuke Modules Vulnerable to Cross-Site Scripting"

Previous message: Matthew Murphy: "acFreeProxy Cross-Site Scripting Vulnerability/Possible DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

acFTP is an open-source FTP daemon for Windows platforms
(http://www.sourceforge.net/projects/acftp) that offers more functionality
than many proprietary servers (including the MS FTP service).  The
authentication code of acFTP contains a flaw -- specifically, the server
treats users as logged in without a valid password.  This results in
mis-representation of server activity in log files, and possibly privilege
elevation.

For example:

USER private
PASS #

This leads it to reject my password, but I can not log in with another set
of credentials, and my log activity appears as "private" instead of the
appropriate "-" or "***".

Next message: Matthew Murphy: "Multiple phpNuke Modules Vulnerable to Cross-Site Scripting"
Previous message: Matthew Murphy: "acFreeProxy Cross-Site Scripting Vulnerability/Possible DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Nov 25 2002 - 17:06:17 PST