Home page logo

bugtraq logo Bugtraq mailing list archives

Re: ftp conversions exploit
From: lamont () ICOPYRIGHT COM (Lamont Granquist)
Date: Mon, 27 Dec 1999 11:53:04 -0800

On Wed, 22 Dec 1999, Desi Hacker wrote:
during the exploiting process.. the final step as instructed by the auther
doesn't work

ftp> get "--use-compress-program=sh blah".tar
ftp> get "--use-compress-program=sh blah".tar

instead is gives a warning of permission denied!
in case of anon ftp logging

The author made it fairly clear that this exploit applied to non-anonymous
accounts, which are more trusted by default than the anonymous FTP
account.  The exploit should also fail for anonymous users in the next
step which requires rights to do a SITE CHMOD.

The moral of the exploit seems to be that you shouldn't trust people with
non-anon FTP access who you wouldn't trust with shell accounts.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]