Bugtraq mailing list archives
[Bug 1066] Changed - Globbing bug - denial of service (fwd)
From: jedi () CLARANET FR
Date: Thu, 15 Mar 2001 11:58:06 GMT
The globbing bug has been confirmed and tracked by the Proftpd team.
--
-=- Frank DENIS aka Jedi/Sector One <j () c9x org> -=-
"If Bill Gates had a dime for every time a Windows box crashed...
... Oh, wait a minute, he already does."
--- Begin Message --- From: proftpd-devel () proftpd org
Date: Thu, 15 Mar 2001 06:17:47 -0500
http://bugs.proftpd.org/show_bug.cgi?id=1066 *** shadow/1066 Thu Mar 15 03:43:52 2001 --- shadow/1066.tmp.23624 Thu Mar 15 06:17:47 2001 *************** *** 4,11 **** | Bug #: 1066 Product: ProFTPD | | Status: NEW Version: 1.2.1 | | Resolution: Platform: All | ! | Severity: major OS/Version: Linux | ! | Priority: P3 Component: mod_ls | +----------------------------------------------------------------------------+ | Assigned To: proftpd-committers () proftpd org | | Reported By: j () 4u net | --- 4,11 ---- | Bug #: 1066 Product: ProFTPD | | Status: NEW Version: 1.2.1 | | Resolution: Platform: All | ! | Severity: critical OS/Version: Linux | ! | Priority: P5 Component: mod_ls | +----------------------------------------------------------------------------+ | Assigned To: proftpd-committers () proftpd org | | Reported By: j () 4u net | *************** *** 19,21 **** --- 19,24 ---- ls */../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../* takes 100% cpu time and can lead into a denial-of-service. + + ------- Additional Comments From droesen () entire-systems com 2001-03-15 06:17 ------- + Confirmed. \ No newline at end of file
--- End Message ---
Current thread:
- [Bug 1066] Changed - Globbing bug - denial of service (fwd) jedi (Mar 15)