OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
NTBugtraq And NTSecurity Archives: Re: Remote DoS Attack in Ser

Re: Remote DoS Attack in Serv-U FTP-Server v2.5a Vulnerability

Subject: Re: Remote DoS Attack in Serv-U FTP-Server v2.5a Vulnerability
From: Shawn Cox (shawn.coxPCCA.COM)
Date: Tue Dec 07 1999 - 09:32:59 CST

This has been fixed 2.5b was made public yesterday.

----- Original Message -----
From: Ussr Labs <labsUSSRBACK.COM>
To: <NTBUGTRAQLISTSERV.NTBUGTRAQ.COM>
Sent: Thursday, December 02, 1999 4:13 AM
Subject: Remote DoS Attack in Serv-U FTP-Server v2.5a Vulnerability

> Remote DoS Attack in Serv-U FTP-Server v2.5a Vulnerability
>
> PROBLEM:
>
> UssrLabs found a Local/Remote DoS Attack in Serv-U FTP-Server v2.5a,
>
> The buffer overflow is caused by a bad Formed (SITE) command
>
> For the source / binary of this remote / local D.O.S
>
> Go to: http://www.ussrback.com/servu/
>
> Vendor Status:
> Informed, technical support request number is 101562
>
> Vendor Url: http://ftpserv-u.deerfield.com/
> Program Url: http://ftpserv-u.deerfield.com/download.cfm
>
> Credit: thanks to dark spyrit for letting us know about this.
>
> SOLUTION
> Nothing yet.
>
> u n d e r g r o u n d s e c u r i t y s y s t e m s r e s e a r c h
> http://www.ussrback.com

This archive was generated by hypermail 2b27 : Tue Dec 07 1999 - 14:29:08 CST