Vulnerability Development mailing list archives
Re: Buffer overflow in Microsoft ftp.exe
From: <rdusek () myway com>
Date: 30 Apr 2003 16:30:17 -0000
In-Reply-To: <Law8-F50RC6HixqDCZx0000a7f4 () hotmail com>
if an attacker with axx to the system is able to modify the scriptfile
he
can modify the script and place an evil command Quote
AAAAAA..SHELLCODE...
and execute code with elevated privileges.
The attacker would only be executing code in the context of the user running FTP.exe... Not necessarily elevated privileges. -Robert Dusek
Current thread:
- Buffer overflow in Microsoft ftp.exe aT4r InsaN3 (Apr 30)
- Re: Buffer overflow in Microsoft ftp.exe D.C. van Moolenbroek (Apr 30)
- <Possible follow-ups>
- Re: Buffer overflow in Microsoft ftp.exe rdusek (Apr 30)