hi Hyperion FTP Server (http://www.mollensoft.com/ )is a powerful, reliable FTP server for Windows 95/98/NT/2000, and supports all basic FTP commands, and much more, such as passive mode. A vulnerability exists in Hyperion Ftp Server (version 2.8.11)which allows a remote user to execute an arbitrary code ,it is a similar vulnerability of Enceladus Server Suite I believe that the problem reside in the use of Marby Socket Window and ftpservx.dll who does not support dir+(buffer=300 byte) Access violation - code c0000005 (first chance) eax=0012bcbc ebx=0012c574 ecx=42424242 edx=7846f5b5 esi=0012bce4 edi=00147ffd eip=42424242 esp=0012bc24 ebp=0012bc44 iopl=0 nv up ei pl zr na po nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246 42424242 ?? ??? made that eip point towards the beginning of our buffer makes me think a news methode to backdooring... it is also noticed that the pass is without encoding a:/users/"login " securma massine french translation : http://www.itmaroc.com/modules.php? name=News&file=article&sid=277 _________________________________________________________ Gagne une PS2 ! Envoie un SMS avec le code PS au 61166 (0,35€ Hors coût du SMS)
This archive was generated by hypermail 2b30 : Tue Dec 24 2002 - 01:24:46 PST