Full Disclosure mailing list archives

Re: RE: [vulnwatch] Serv-U MDTM Command Buffer Overflow Vulnerability

From: "airsupply () freebsdchina org" <airsupply () freebsdchina org>
Date: Fri, 27 Feb 2004 09:43:11 -0800

SecMail wrote:

The vuln isn't working on my win2000 adv server sp3 in my test network.
I tried both the exploit and manually inputting the string.
I'm not quite sure what to write that off as.

Has it worked on anyone?



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

hmm,which version of your serv-u?
serv-u 5.0.0.4 wont work. others can be expolit.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

[vulnwatch] Serv-U MDTM Command Buffer Overflow Vulnerability bkbll (Feb 26)
- <Possible follow-ups>
- RE: [vulnwatch] Serv-U MDTM Command Buffer Overflow Vulnerability SecMail (Feb 26)
  - Re: RE: [vulnwatch] Serv-U MDTM Command Buffer Overflow Vulnerability airsupply () freebsdchina org (Feb 26)