Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

WU-FTPD

From: mnemonix () GLOBALNET CO UK (Mnemonix)
Date: Fri, 12 Nov 1999 06:32:19 -0000

There's feature of the WU-FTP daemon  (Version 2.4.2 tested as well as earlier versions) 
(http://www.academ.com/academ/wu-ftpd/) that allows a remote user to workout what flavour of UNIX the ftp server is 
running on. When using the cd (CWD) command to a user accounts home directory (cd ~user) the WU-FTPD will reveal the 
accounts physical path if the account is a built in standard account such as root or games or uucp etc. For 
non-standard accounts it calims not to know the user:

ftp> cd ~mail
550 /var/spool/mail: No such file or directory.
ftp> cd ~games
550 /usr/games: No such file or directory.
ftp> cd ~root
550 /root: No such file or directory.
ftp> cd ~guest
550 Unknown user name after ~
ftp> cd ~jsmith
550 Unknown user name after ~
ftp> cd ~nobody
550 /dev/null: No such file or directory.

Knowing what accounts exist on what flavour of UN*X allows a remote user to can then say with a high degree of 
certainty that they're dealing with a specific platform.

Cheers,
David Litchfield
http://www.infowar.co.uk/mnemonix/
Cerberus Information Security
+44(0)181 661 7405

<!-- body="end" -->
<HR>

<UL>
<LI><STRONG>Next message:</STRONG> Crispin Cowan: "Re: rpc.nfsd exploit code"
<LI><STRONG>Previous message:</STRONG> Mariusz Marcinkiewicz: "Re: rpc.nfsd exploit code"
<LI><STRONG>Next in thread:</STRONG> hayward () SLOTHMUD ORG: "Re: WU-FTPD"
<LI><STRONG>Reply:</STRONG> hayward () SLOTHMUD ORG: "Re: WU-FTPD"
</UL>
<HR>

<SMALL>

This archive was generated by hypermail 2.0b3 
on Fri Nov 12 1999 - 13:45:03 CST</EM>
</EM>
</SMALL>
</BODY>
</HTML>
Previous By Date Next
Previous By Thread Next

Current thread: