Bugtraq mailing list archives
FTP DoS - PORT and PASV effected.
From: avalon () COOMBS ANU EDU AU (Darren Reed)
Date: Wed, 8 Dec 1999 08:19:41 +1100
In some mail from Renaud Deraison, sie said:
On Tue, 7 Dec 1999, Darren Reed wrote:Who has more free file descriptors & network ports, you or the ftp server ?The attack you are describing is not new - this is just a PASV attack, which has been around for years. Hopefully, this problem is now solved.
[...] btw, a similar sort of attack can be mounted using the PORT command. You just need to setup a local listener, etc, or get the ftp server to try connect to lots of network 10 sites in < 75 seconds before TCP connect's start timing out. I'll leave that as an exercise for the reader - a correct fix for the PASV problem should fix this one as well (and the exploit is almost the same too). Darren
Current thread:
- Big problem on linux 2.0, (continued)
- Big problem on linux 2.0 visi0n (Dec 11)
- Re: Big problem on linux 2.0 visi0n (Dec 11)
- Re: Big problem on linux 2.0 Andrea Arcangeli (Dec 14)
- HP-UX: Security Vulnerability in wu-ftp Aleph One (Dec 13)
- Re: w00giving #8] Solaris 2.7's snoop Shane A. Macaulay (Dec 09)
- Clarification needed on the snoop vuln(s) Alfred Huger (Dec 09)
- Re: FTP denial of service attack Renaud Deraison (Dec 07)
- FTP DoS - PORT and PASV effected. Darren Reed (Dec 07)
- Re: FTP DoS - PORT and PASV effected. Henrik Nordstrom (Dec 09)
- Re: FTP denial of service attack Hugo.van.der.Kooij () CAIW NL (Dec 08)
- Re: FTP denial of service attack Paulo Licio de Geus (Dec 09)
- [Debian] New version of htdig released Aleph One (Dec 10)
- Fundamental flaw in UnixWare 7 security Brock Tellier (Dec 10)
- Solaris sadmind Buffer Overflow Vulnerability Alfred Huger (Dec 10)
- Re: FTP denial of service attack antirez () INVECE ORG (Dec 09)