Vulnerability Development mailing list archives

Re: Microsoft FTP Program

From: "Eric D. Williams" <eric () INFOBRO COM>
Date: Fri, 23 Mar 2001 17:46:22 -0500

But again there are also differences with the older version ftp.exe in NT:

3.51

WSOCK32.dll
USER32.dll
CRTDLL.dll
ADVAPI32.dll
KERNEL32.dll
NTDLL.DLL

4.0

WSOCK32.dll
ws2_32.DLL
MSWSOCK.DLL
USER32.dll
MSVCRT.dll
ADVAPI32.dll
KERNEL32.dll
NTDLL.DLL

for starters.  BTW, I could not reporduce the format string crash you got
(SteeLe) on either platform.

On 3.51 with 3.51 Client::
C:\>ftp localhost
Connected to server.
220 server Windows NT FTP Server (Version 3.51).
User (black.infobro.com:(none)): ftp
331 Anonymous access allowed, send identity (e-mail name) as password.
Password:
230 Anonymous user logged in as ftp (guest access).
ftp> quote
(command line to send)
usage: quote line-to-send
ftp> quote 0x%x.0x%x.0x%x.0x%x.0x%x.0x%x.0x%x.0x%x
500
'0x1458912.0x14579a8.0x0.0x78257830.0x2578302e.0x78302e78.0x302e7825.0x2e782
578': command not understood
ftp> quote %s
500 '': command not understood
ftp> quote %n
500 '': command not understood
ftp> quit
221 Bye!
-----
Client - ftp.exe ::
\winnt35\system32>strings ftp.exe

VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
File Transfer Program
FileVersion
3.51
InternalName
ftp.exe
LegalCopyright
Copyright
 Microsoft Corp. 1981-1995
OriginalFilename
ftp.exe
ProductName
Microsoft
 Windows NT(TM) Operating System
ProductVersion
3.51
VarFileInfo
Translation


Eric Williams, Pres.
Information Brokers, Inc.    Phone: +1 202.889.4395
http://www.infobro.com/        Fax: +1 202.889.4396
               mailto:eric () infobro com
           For More Info: info () infobro com
                    PGP Public Key
   http://new.infobro.com/KeyServ/EricDWilliams.asc
Finger Print: 1055 8AED 9783 2378 73EF  7B19 0544 A590 FF65 B789


On Friday, March 23, 2001 9:02 AM, Bruno Lustosa [SMTP:bruno () LUSTOSA NET]
wrote:

SteeLe [steeLe () PRIVACYX COM] wrote:

I do know that the ftp program in most linux distros had this problem a
while back but who knew it would pass on to Windows.
Might not be important but someone should comment on this :)


Nod.. I wouldn't find it THAT strange for it to pass from linux client to
windows client. If you check inside ftp.exe on a windows box, you can find
the
following string:

@(#) Copyright (c) 1983 The Regents of the University of California.

And checking the strings on /bin/ftp, you can find the following:

@(#) Copyright (c) 1985, 1989 Regents of the University of California.

Doesn't this look very very interesting? :)

--
Bruno Lustosa, aka Lofofora          | Email: bruno () lustosa net
Network Administrator/Web Programmer | ICQ UIN: 1406477
Rio de Janeiro - Brazil              |
... Linux! Guerrilla UNIX Development. Venimus, Vidimus, Dolavimus.

Current thread:

Microsoft FTP Program SteeLe (Mar 22)
- <Possible follow-ups>
- Re: Microsoft FTP Program Syzop (Mar 23)
- Re: Microsoft FTP Program Jose Nazario (Mar 23)
- Re: Microsoft FTP Program Eric D. Williams (Mar 23)
- Re: Microsoft FTP Program Bruno Lustosa (Mar 23)
- Re: Microsoft FTP Program Eric D. Williams (Mar 25)