Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: Extending the FTP "ALG" vulnerability to any FTP client
From: dugsong () MONKEY ORG (Dug Song)
Date: Sat, 11 Mar 2000 16:05:45 -0500


On Fri, 10 Mar 2000, Mikael Olsson wrote:

  I'm theorizing. But that's what I did with the FTP PASV
  attack aswell, and right enough, less than a day later reports
  came dropping in, and a few days after that Dug Song had written
  a generic proof-of-concept hack. Care to type up another one?

since you asked so nicely. :-)

        http://www.monkey.org/~dugsong/ftpd-ozone.c.txt

reverse firewall penetration is really nothing new, though...

-d.

---
http://www.monkey.org/~dugsong/



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]