BUG in ftp client on *BSD and Solaris system?

From: Admin (adminat_private)
Date: Fri May 31 2002 - 12:36:55 PDT

Next message: zillion: "Mnews 1.22 PoC exploit"

Previous message: Steven J. Sobol: "RE: Verizon Call Intercept"
Next in thread: John Thornton: "72% of web base ping scripts allows attackers to pass malicious parameters"
Reply: John Thornton: "72% of web base ping scripts allows attackers to pass malicious parameters"
Reply: elguapo: "Re: BUG in ftp client on *BSD and Solaris system?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello all,
in these days I got a strange core dump using the ftp client.
This core dump can only did by using the PUTTY ssh client...

(Tested with putty 0.52)

 >root@Wayreth[~]: ftp ftp.unina.it
 >Connected to ftp.unina.it.
 >220
 >Name (ftp.unina.it:root): ^\Quit (core dumped)
 >root@Wayreth[~]:

for do that, just push CTRL+ù when the user is requested...

Tested system:
-OpenBSD 3.1
-OpenBSD 3.0
-OpenBSD 2.9
-FreeBSD 4.4-RC5
-FreeBSD 4.5-STABLE
-FreeBSD kalieye 4.6-RC FreeBSD 4.6-RC
-SunOS XXXXX 5.6 Generic_105181-30 sun4u sparc SUNW,Ultra-Enterprise
-SunOS XXXXX 5.6 Generic_105182-30 i86pc i386 i86pc

Not vulnerable:
-Linux

This bug haven't any security issue, it's only a client and not with the 
+s flag. In these day I haven't the time to check the source code for 
see what's is wrong, I will did it in some days...

Agazzini Maurizio
adminat_private

Next message: zillion: "Mnews 1.22 PoC exploit"
Previous message: Steven J. Sobol: "RE: Verizon Call Intercept"
Next in thread: John Thornton: "72% of web base ping scripts allows attackers to pass malicious parameters"
Reply: John Thornton: "72% of web base ping scripts allows attackers to pass malicious parameters"
Reply: elguapo: "Re: BUG in ftp client on *BSD and Solaris system?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri May 31 2002 - 15:58:40 PDT