Bugtraq mailing list archives
Re: Extending the FTP "ALG" vulnerability to any FTP client
From: dugsong () MONKEY ORG (Dug Song)
Date: Sat, 11 Mar 2000 16:05:45 -0500
On Fri, 10 Mar 2000, Mikael Olsson wrote:
I'm theorizing. But that's what I did with the FTP PASV attack aswell, and right enough, less than a day later reports came dropping in, and a few days after that Dug Song had written a generic proof-of-concept hack. Care to type up another one?
since you asked so nicely. :-) http://www.monkey.org/~dugsong/ftpd-ozone.c.txt reverse firewall penetration is really nothing new, though... -d. --- http://www.monkey.org/~dugsong/
Current thread:
- Extending the FTP "ALG" vulnerability to any FTP client Mikael Olsson (Mar 10)
- Re: Extending the FTP "ALG" vulnerability to any FTP client Mitchell Blank Jr (Mar 11)
- Re: Extending the FTP "ALG" vulnerability to any FTP client Mikael Olsson (Mar 11)
- Re: Extending the FTP "ALG" vulnerability to any FTP client Darren Reed (Mar 14)
- Microsoft Security Bulletin (MS00-017) Microsoft Product Security (Mar 16)
- Cisco Security Notice: Cisco Secure PIX Firewall FTP Vulnerabilities security-alert () CISCO COM (Mar 16)
- Microsoft Security Bulletin (MS00-016) Microsoft Product Security (Mar 17)
- Re: Extending the FTP "ALG" vulnerability to any FTP client Solar Designer (Mar 11)
- <Possible follow-ups>
- Re: Extending the FTP "ALG" vulnerability to any FTP client Dug Song (Mar 11)
- Re: Extending the FTP "ALG" vulnerability to any FTP client Mitchell Blank Jr (Mar 11)