OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
NTBugtraq And NTSecurity Archives: Remote DoS Attack in QVT/Ter

Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server Vulnerability


Ussr Labs (labsUSSRBACK.COM)
Wed, 10 Nov 1999 04:08:59 -0300


Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server Vulnerability

PROBLEM

UssrLabs found a Local/Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server,
the buffer overflow is caused by a long user name / password, 2000
characters,
and the re-connection to the Ftp Server.

There is not much to expand on.... just a simple hole

Example:

Go to: http://www.ussrback.com/qvtfs42/

For the source / binary of this remote / local D.O.S

Vendor Status:
Not Contacted

Vendor Url: http://www.qpc.com
Program Url:http://www.qpc.com

Credit: USSRLABS

SOLUTION
    Nothing yet.



This archive was generated by hypermail 2.0b3 on Wed Nov 10 1999 - 07:10:34 CST