Bugtraq mailing list archives
Re: FireWall-1 FTP Server Vulnerability
From: core.lists.bugtraq () CORE-SDI COM (Emiliano Kargieman)
Date: Fri, 18 Feb 2000 19:19:05 -0300
Mikael Olsson wrote:
The only solution that even begins to look "good" is to completely reassemble the TCP stream and not make "educated" guesses about what packet data belongs on what line and in which order and state of the FTP protocol. It doesn't have to be a "proxy" in order to do this, I think. You DO need to reassemble the stream completely though.
Of course, reassembling the TCP stream without proxing is bound to give you some headaches too, remember "Insertion, Evasion and D.O.S"? EK. -- Emiliano Kargieman <ek () core-sdi com> Director de Investigacion - CoreLabs - Core-SDI S.A. http://www.core-sdi.com "At any rate, let us not loiter in the arena of hot events." Tom Robbins, ARA. --- For a personal reply use emiliano_kargieman () core-sdi com
Current thread:
- Re: FireWall-1 FTP Server Vulnerability Lars.Troen () MERKANTILDATA NO (Feb 12)
- Re: FireWall-1 FTP Server Vulnerability Alexandru Popa (Feb 14)
- Re: FireWall-1 FTP Server Vulnerability monti (Feb 14)
- Re: FireWall-1 FTP Server Vulnerability Henrik Nordstrom (Feb 15)
- DDoS whitepaper Bennett Todd (Feb 17)
- Re: FireWall-1 FTP Server Vulnerability Mikael Olsson (Feb 17)
- Re: FireWall-1 FTP Server Vulnerability Emiliano Kargieman (Feb 18)
- Patch Available for "Site Wizard Input Validation" Vulnerability Microsoft Product Security (Feb 18)
- Re: FireWall-1 FTP Server Vulnerability Dug Song (Feb 18)
- Re: FireWall-1 FTP Server Vulnerability Henrik Nordstrom (Feb 15)
- Re: FireWall-1 FTP Server Vulnerability Borbely Zoltan (Feb 15)
- Re: FireWall-1 FTP Server Vulnerability monti (Feb 17)
- Re: FireWall-1 FTP Server Vulnerability Peter Benie (Feb 16)
- Re: FireWall-1 FTP Server Vulnerability Nick FitzGerald (Feb 17)
- ANN: Bruce 1.0ea2: Networked Host-Vulnerability Scanner for Solaris & Linux Alec Muffett (Feb 17)
- <Possible follow-ups>
- Re: FireWall-1 FTP Server Vulnerability der Mouse (Feb 17)
- Re: FireWall-1 FTP Server Vulnerability chess () US IBM COM (Feb 18)