- Buffer overflows in FTP Serv-U 2.5 -

There are some buffer overflows in FTP Serv-U 2.5. If you send:

cwd xxxxxxx...
ls xxxxxx...

and so on (it works for all commands I tried which takes arguments), the server will crash if the number of characters is 155 or more. If the number is exactly 155 it crashes without any message, and if the number is 156 or more Dr. Watson starts.

[Home]  [Security Advisories]  [The Toolbox]  [The Trashcan]

© 1999, Arne Vidström