Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Serv-U up to 5.2 Denial of Service
From: Patrick <patrickthomassen () gmail com>
Date: 11 Sep 2004 08:49:43 -0000


Serv-U FTP server is a secure, advanced FTP server for Windows. However, like most programs, it is not completely 
bugfree.

I (and maybe more people with me) found this bug some time ago. It can be triggered as *every* user that can log in, 
anonymous included, and exists in possibly every version. (At least 4.x and 5.x series).

The exploit might be a cliché but it might threaten (hosting and other) companies that use this FTP server.

Following commands will trigger the crash:

STOU COM1
STOU LPT1
STOU PRN
STOU AUX

However, "STOU NUL" does NOT work.

Greetings,
Patrick

  By Date           By Thread  

Current thread:
  • Serv-U up to 5.2 Denial of Service Patrick (Sep 11)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]