Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

Re: Buffer overflow in Microsoft ftp.exe

From: <rdusek(at)myway.com>
Date: Wed Apr 30 2003 - 12:30:17 EDT

('binary' encoding is not supported, stored as-is)
In-Reply-To: <Law8-F50RC6HixqDCZx0000a7f4@hotmail.com>

>if an attacker with axx to the system is able to modify the scriptfile
he
>can modify the script and place an evil command Quote
AAAAAA..SHELLCODE...
>and execute code with elevated privileges.

The attacker would only be executing code in the context of the user running FTP.exe... Not necessarily elevated privileges.

-Robert Dusek Received on Wed Apr 30 17:36:56 2003

This message: [ Message body ]
Next message: Discussion Lists: "RE: Windows XP mmc.exe Crash"
Previous message: Cesar: "Latest MS SQL Server vulnerabilities revealed."
In reply to aT4r InsaN3: "Buffer overflow in Microsoft ftp.exe"
Next in thread: D.C. van Moolenbroek: "Re: Buffer overflow in Microsoft ftp.exe"
Reply: D.C. van Moolenbroek: "Re: Buffer overflow in Microsoft ftp.exe"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:38 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library