Hosting Provided By

Re: Buffer overflow in Microsoft ftp.exe

From: D.C. van Moolenbroek <dc.van.moolenbroek(at)chello.nl>
Date: Wed Apr 30 2003 - 17:49:48 EDT

"aT4r InsaN3" wrote:
> if an attacker with axx to the system is able to modify the scriptfile he

Yes, but since he can also use the ftp client's built-in "!" command to execute shell commands in that case, this does not seem to be a very realistic scenario?

Regards,

David

--
class sig{static void main(String[]s){for// D.C. van Moolenbroek
(int _=0;19>_;System.out.print((char)(52^// (CS student, VU, NL)
"Y`KbddaZ}`P#KJ#caBG".charAt(_++)-9)));}}// -Java sigs look bad-

Received on Wed Apr 30 18:02:35 2003

This message: [ Message body ]
Next message: h1kari: "TOORCON 2003 CALL FOR PAPERS"
Previous message: Luciano Miguel Ferreira Rocha: "Re: shellcode not executing if optimizations are on."
In reply to: aT4r InsaN3: "Buffer overflow in Microsoft ftp.exe"
In reply to rdusek(at)myway.com: "Re: Buffer overflow in Microsoft ftp.exe"
Next in thread: Frank Knobbe: "Re: Buffer overflow in Microsoft ftp.exe"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:38 EDT