General discussion

Locked

Security flaw in the FTP Service deliver

By andreab ·
Hi all,
I'm doing some tests against my Windows 2000 System with and IDS (Intrusion Detection Scanner)
based on a Unix box.
I found out something interesting about the FTP Service and the TCP/IP Session Number generator
and I would like to discuss it.
Here is the report of the scanner:

==================================================

Microsoft FTP Server 5.0 : Win2K

192.168.0.100 ftp (21/tcp)

REPORT The remote FTP server closes
the connection when one of the commands
USER, PASS or HELP is given with a too long argument.
This probably due to a buffer overflow, which
allows anyone to execute arbitrary code on the remote host.
This problem is threatening, because the attackers don't need an account
to exploit thisflaw.;
Solution : Upgrade your FTP server or change it;
Risk factor : High

192.168.0.100 ftp (21/tcp)

REPORT It was possible to make the remote FTP server
crash by issuing this command : CEL aaaa[...]aaaa
This problem is known has the 'aix ftpd' overflow and

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Security flaw in the FTP Service deliver

by dtiongco In reply to Security flaw in the FTP ...

Programmers use buffers to store information while programs are executing. If they set aside to much buffer, this become a security issue. The extra buffer is a door ajar to malicious hackers. These buffers can be exploited by hackers sending exefile with the FTP message ( could be a virus, trojan horse) since there is an extra space in the buffer. Just like your report say, the hacker can crash your server by sending extra command from hids FTP file (remember there is an extra space in thebuffers to accomodate/executive the command. Check microsoft web page for current fix if you are concern. Another good web site is www.securityfocus.com. This web site a list of current security bugs and/or solutions for a specific bug. When you get there follow the link "Vulnerabilites" and find out how much bugs there are already on W2000. Cheers.

Collapse -

Security flaw in the FTP Service deliver

by andreab In reply to Security flaw in the FTP ...

The question was auto-closed by TechRepublic

Collapse -

Security flaw in the FTP Service deliver

by gutridgesj In reply to Security flaw in the FTP ...

this is good to know since we will be using it soon

Collapse -

Security flaw in the FTP Service deliver

by andreab In reply to Security flaw in the FTP ...

The question was auto-closed by TechRepublic

Collapse -

Security flaw in the FTP Service deliver

by andreab In reply to Security flaw in the FTP ...

This question was auto closed due to inactivity

Back to Security Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums