Security Incidents mailing list archives

Re: Linux ftpd

From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: Sat, 9 Jun 2001 19:47:27 +0200

On Sat, Jun 09, 2001 at 12:23:56PM -0400, Sam Mingolelli wrote:

This looks like a buffer overflow attack to me. I would make sure that
you have the latest patches etc. applied to ftpd.


No, this is format string vulnerability exploit for wu-ftpd 2.6.0, released
about year ago by me.

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw () frasunek com ** PGP: D48684904685DF43EA93AFA13BE170BF *

Current thread:

Linux ftpd mrcbis (Jun 09)
- Re: Linux ftpd Sam Mingolelli (Jun 09)
  - Re: Linux ftpd Przemyslaw Frasunek (Jun 09)
- Re: Linux ftpd centipede (Jun 09)