Bugtraq mailing list archives
another two bugs in ftpd
From: vadim () tversu ac ru (Vadim Kolontsov)
Date: Tue, 15 Oct 1996 08:41:40 +0300
Hello, wuftpd can create core dump in two following situation too (yes, dump will contain some subset of shadowed passwords): 1) "pasv" given when user not logged in (caused by error in passive()) 2) more than 100 arguments to any executable command (for example, "list") (caused by error in ftpd_popen()) First error presents in almost all version of bsd's ftpd, wu-ftpd and derived. Second error presents in all versions of bsd's ftpd, wu-ftpd and derived (as far as I know). Bugfixes are simple. Checking for "pw != NULL" in first case, and checking for "argc < 100" in another one (see sources). Best regards, Vadim. P.S. By the way, who knows e-mail of wu-ftpd developer? Mail me, pls... -------------------------------------------------------------------------- Vadim Kolontsov SysAdm/Programmer Tver Regional Center of New Information Technologies Networks Lab
Current thread:
- Re: bin/1805: Bug in ftpd Marc Slemko (Oct 14)
- another two bugs in ftpd Vadim Kolontsov (Oct 14)
- Re: BoS: another two bugs in ftpd Yiorgos Adamopoulos (Oct 15)
- Re: BoS: another two bugs in ftpd Norman Shulman (Oct 15)
- another two bugs in ftpd Vadim Kolontsov (Oct 14)