Bugtraq mailing list archives

Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability

From: labs () USSRBACK COM (Ussr Labs)
Date: Tue, 14 Dec 1999 21:41:02 -0300


Strange, no body report this problem only you :(, the war ftp deamnon stop
responding wen reseive lots of incomming connections, the porgram no CRASH
just only stop responding.

u n d e r g r o u n d  s e c u r i t y  s y s t e m s  r e s e a r c h
http://www.ussrback.com

-----Original Message-----
From: Malartre [mailto:malartre () videotron ca]
Sent: Tuesday, December 14, 1999 8:46 PM
To: Ussr Labs
Cc: BUGTRAQ () SECURITYFOCUS COM
Subject: Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70
Vulnerability

Ussr Labs wrote:


Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability


I am personnaly not able to reproduce this on my computer. I was using
the program on the same computer that war-ftpd is.

It's a Pentium 200 with win95b, no firewalls, nothing special.

My cable-modem connection was down during the use of the program, but
this is because I was flooding myself.

After a minute or two, I closed the program and my connection was back
and War FTP was ok.
Thank You

--
[Malartre][malartre () videotron ca]

Current thread:

Big problem on 2.0.x? Eduardo Cruz (Dec 09)
- Re: Big problem on 2.0.x? Hugo.van.der.Kooij () CAIW NL (Dec 10)
- Re: Big problem on 2.0.x? Mike Ireton (Dec 10)
- <Possible follow-ups>
- Re: Big problem on 2.0.x? Stephen White (Dec 11)
  - Privacy hole in Go Express Search Alfred Huger (Dec 13)
  - Re: Big problem on 2.0.x? Jason Mills (Dec 13)
    - [patch] Re: Big problem on 2.0.x? Andrea Arcangeli (Dec 14)
  - Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Ussr Labs (Dec 13)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Malartre (Dec 14)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Ussr Labs (Dec 14)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Federico - Comnet S.A. (Dec 15)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70Vulnerability ussr secure (Dec 16)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Tim (Dec 15)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Ussr Labs (Dec 15)
    - CERT Advisory CA-99-16 Buffer Overflow in Sun Solstice AdminSuite Daemon sadmind Elias Levy (Dec 14)
    - Statement: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Jarle Aase (Dec 16)
  - sshd1 allows unencrypted sessions regardless of server policy Markus Friedl (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Michael H. Warfield (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Pavel Machek (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Joseph Moran (Dec 14)

(Thread continues...)