Bugtraq mailing list archives
Re: Windows 95 Serv-U FTP bug
From: tl () VORTEX ORG (tl)
Date: Thu, 5 Feb 1998 11:31:10 -0600
This program doesn't do anything to my Serv-U program. I can see the garbage flooding, however when I break out of serv-who.c, serv-u continues to run normally without any crash or system slowdown. I'm running win95 osr2 on a PPro 150, and ServU version 2.0c 32bit. This is an older version so perhaps that's the reason .. -----Original Message-----
Hello, After reading an earlier message, Windows 95/NT War FTPD 1.65 Buffer Overflow, I thought I might play around with some other Windows ftp servers. One problem I found was in Serv-U FTP by Cat-Soft <http://www.cat-soft.com>. After you connect instead of sending the normal USER then PASS, you can send garbage. And if you send alot of garbage at a high speed Serv-U will stop responding to mouse clicks and after a short amount of time will crash and give you this: SERV-U32 caused a stack fault in module KERNEL32.DLL at 014f:bff9a08c. Registers: EAX=005e2084 CS=014f EIP=bff9a08c EFLGS=00000246 EBX=17bf0514 SS=0157 ESP=005e2080 EBP=005e20d4 ECX=005e2098 DS=0157 ESI=81628c70 FS=2347 EDX=ffffffff ES=0157 EDI=0000ffff GS=0000 Bytes at CS:EIP: 5e 8b e5 5d c2 10 00 64 a1 00 00 00 00 55 8b ec Stack dump: 00000001 c00000fd 00000000 00000000 bff9a08c 00000000 01570157 01870028 17bf0b6a c10fabe8 16c70001 80dc0014 16e73a45 00040000 02000000 bff97fdc Why it does this I have no idea. It only acts this way in the windows 95 version. Under NT the cpu usage goes up to 100%, but no crash. Alot of times even after the crashed Serv-U has closed, Windows is still slow to non responsive. And here is the program I used, not pretty but it works:
Current thread:
- Windows 95 Serv-U FTP bug whiz (Feb 04)
- <Possible follow-ups>
- Re: Windows 95 Serv-U FTP bug tl (Feb 05)
- Re: Windows 95 Serv-U FTP bug Alan Thew (Feb 06)
- SMB signing NT chall / response Mudgenski Von Splat (Feb 06)
- L0pht Advisory - NT port binding vulnerability Weld Pond (Feb 06)
- An update on MS private key (in)security issues Aleph One (Feb 06)
- Another ld-linux.so problem Solar Designer (Feb 06)
- CERT Advisory CA-98.04 - NT.WebServers Phillip R. Jaenke (Feb 06)
- Re: CERT Advisory CA-98.04 - NT.WebServers David LeBlanc (Feb 06)
- serious security hole in KDE Beta 3 Tudor Bosman (Feb 06)
- Re: Another ld-linux.so problem joost witteveen (Feb 07)
- Re: Another ld-linux.so problem Solar Designer (Feb 07)