|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[vulnwatch] WFTPD Pro Server 3.21 MLST Command Denial of Service Vulnerability
From: lion (lion
cnhonker.net)
Date: Sun Aug 29 2004 - 13:38:49 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[vulnwatch] WFTPD Pro Server 3.21 MLST Command Denial of Service Vulnerability
www.cnhonker.com
Security Advisory
Advisory Name: WFTPD Pro Server 3.21 MLST Command Denial of Service Vulnerability
Release Date: 08/30/2004
Affected version: WFTPD Pro Server 3.21 Release 3
Author: lion <lioncnhonker.net>
Overview:
A vulnerability has been found in WFTPD Pro Server. The problem \
is When a user logged in, send a "mlst" command to target will crash the Server.
Exploit:
PoC exploit attached.
About HUC:
HUC is still alive.
- application/octet-stream attachment: wftpd.c
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]