DoS Vulnerabilities in Crob FTP Server 2.60.1

From: Zero_X www.lobnan.de Team (zero-xat_private)
Date: Wed Aug 06 2003 - 01:23:54 PDT

Next message: Jonathan A. Zdziarski: "mod_dosevasive v1.6: Apache DoS Evasive Maneuvers Module"

Previous message: Matt Zimmerman: "[SECURITY] [DSA-366-1] New eroaster packages fix insecure temporary file creation"
Next in thread: Zero_X www.lobnan.de Team: "Re: DoS Vulnerabilities in Crob FTP Server 2.60.1"
Reply: Zero_X www.lobnan.de Team: "Re: DoS Vulnerabilities in Crob FTP Server 2.60.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) DoS Vulnerabilities in Crob FTP Server 2.60.1 Tested on Windows 98 Crash the Server with "con": Rename a file to "con" and the server will crash. Crash the Server with "%s": Login with %s%s%s%s%s%s Send FTP commands with %s%s%s%s%s (like dir %s%s%s%s%s%s) Zero X, member of www.lobnan.de and www.lostkey.org

Next message: Jonathan A. Zdziarski: "mod_dosevasive v1.6: Apache DoS Evasive Maneuvers Module"
Previous message: Matt Zimmerman: "[SECURITY] [DSA-366-1] New eroaster packages fix insecure temporary file creation"
Next in thread: Zero_X www.lobnan.de Team: "Re: DoS Vulnerabilities in Crob FTP Server 2.60.1"
Reply: Zero_X www.lobnan.de Team: "Re: DoS Vulnerabilities in Crob FTP Server 2.60.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Aug 06 2003 - 11:06:37 PDT