Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Cartel Informatique Security Research Labs (srlcartel-info.fr)
Date: Thu Jun 21 2001 - 09:26:09 CDT
A-FTP Anonymous FTP Server Remote DoS attack Vulnerability
Cartel Advisory Code: CART-0102
A-FTP Server - Eirik Helgeland
softheadonline.no / softheadx-stream.no
What It Is (from the author):
A free Unix Compatible Anonymous FTP server, running hidden from the
Can be started from a floppy without changing any ini or registry
settings on the host
Public Disclosure Date:
a-FTP Anonymous FTP Server
Nicolas Brulez - Brulezcartel-info.fr
Cartel security team has found a buffer overflow in the A-FTP anonymous
which means that an attacker can execute a denial of service attack
Once the big buffer has been sent, the server is vulnerable.
Only one more connection is needed to make the FTP service unavailable.
If noone tries to login before the attacker's logout, the server will
Here comes a fully working exploit given as a proof of concept for
This exploit has been fully coded in Win32 assembly language.
Cartel security team can't be held responsible for anything you do with
220 Anonymous FTP Server Ready
[buffer] is around 2048 characters. (more or less)
It now needs a connection in order to crash.
Something like a : "ftp ip" will do the trick.
result : FTP service is unavaiable.
Date of Vendor Notification:
Waiting answer from the author.
Greetings to my friends at:
USSR, Hert,Vauban systems and qualys.
Cartel is a company based in France, dedicated to Research about network
application security systems.
Security services provided are :
- Firewalls testing
- Network Penetration Testing
- Application Security Testing
- Data protecting
- Intrusion Detection systems
- Binary auditing
- Secured hosting
Copyright (c) Cartel informatique Security Research LABS.
This Document is copyrighted.It can't be edited nor republished
without explicit consent of CARTEL LABS.
For more informations, feel free to contact us.
Cartel info security research labs
http://securite.cartel-info.fr/ (french site)
- application/octet-stream attachment: aftpkill.EXE