Bugtraq mailing list archives

DOS PC FTP SERVER

From: etorres () pollux javeriana edu co (Efrain Torres Mejia)
Date: Sat, 11 Oct 1997 17:50:40 -0500


Ok, so here is another stupid bug.


Im sure this will work on others pc ftp servers for windoze

Impact: Anybody from outside can shutdown your pc ftp server.
        And if u are under win3.1 the system will crash.


Program: WinQVT/NET
Version: All versions.. 16 and 32 bits

Solution.. dont use it or upgrade

Exploit: Just Send a OOB (Out of Band) to port 21,

Exploit for dummies: Take any winnuke, open it and read the code,
                     when u find a "139" change it for a "21".
                     OK.

I know this is stupid....... :P. But maybe somebody will need it.. who
knows...



                         .LoW  _  _
                     |\  | _ |(_`|_'
                     |  \|(_)|,_)|_.

                   Efrain 'ET' Torres
                    et () insomnia org

Current thread:

L0pht Advisory: IMAP4rev1 imapd server, (continued)
- L0pht Advisory: IMAP4rev1 imapd server We got Food - Fuel - Ice-cold Beer - and X.509 certificates (Oct 08)
  - Re: L0pht Advisory: IMAP4rev1 imapd server Marc Slemko (Oct 08)
    - SNMP Insecurity Aleph One (Oct 08)
    - Malicious Linux modules Runar Jensen (Oct 08)
    - Re: L0pht Advisory: IMAP4rev1 imapd server Casper Dik (Oct 09)
    - Security flaw in PGPverify of INN Lutz Donnerhacke (Oct 09)
    - Re: L0pht Advisory: IMAP4rev1 imapd server Kragen Sitaker (Oct 09)
    - Security flaw in Count.cgi (wwwcount) Razvan Dragomirescu (Oct 10)
    - Huge security holes in Microsoft FP98 server extensions for Apache Marc Slemko (Oct 11)
    - Re: Huge security holes in Microsoft FP98 server extensions for Aleph One (Oct 11)
    - DOS PC FTP SERVER Efrain Torres Mejia (Oct 11)
    - _very_ poor ISN generation on Ascend MAX (fwd) Marc Slemko (Oct 11)
- Another way to exploit local classes in Java Andre L. Dos Santos (Oct 08)
- Re: Possible weakness in LPD protocol Oliver Friedrichs (Oct 03)
- Re: Possible weakness in LPD protocol Eivind Eklund (Oct 03)
- Re: Possible weakness in LPD protocol Doug Hughes (Oct 05)