Date: Tue, 3 Oct 2000 12:20:20 +0700 (NSS) From: Max Khon <fjoe@iclub.nsu.ru> To: Neil Blakey-Milner <nbm@mithrandr.moria.org> Cc: Brett Glass <brett@lariat.org>, "Chris D . Faulhaber" <jedgar@fxp.org>, security@FreeBSD.ORG Subject: Re: ftpd bug in FreeBSD through at least 3.4 Message-ID: <Pine.BSF.4.21.0010031215170.25765-100000@iclub.nsu.ru> In-Reply-To: <20001002204526.A58098@mithrandr.moria.org>
next in thread | previous in thread | raw e-mail | index | archive | help
hi, there! On Mon, 2 Oct 2000, Neil Blakey-Milner wrote: > > >The system's ftp daemon or wu-ftpd? The ftp daemons installed with 3.5.1 > > >and 4.1[.1] don't seem affected. > > > > It DEFINITELY works on FreeBSD's own ftpd in 3.4-RELEASE and all 2.x versions > > I have tested. > > This is quite cute: > > (nbm@futon) /home/nbm> ftp 127.0.0.1 > Connected to 127.0.0.1. > 220 futon.sunesi.com FTP server (Version 6.00) ready. > Name (127.0.0.1:nbm): ftp > 331 Guest login ok, send your email address as password. > Password: > 230 Guest login ok, access restrictions apply. > Remote system type is UNIX. > Using binary mode to transfer files. > ftp> quote %s%s%s%s > Segmentation fault > > As in, it crashes the ftp client. > > A 4.0 ftp client connecting to 'futon' (a 3.3 machine): > > (nbm@couch) /home/nbm> ftp futon > Connected to futon.sunesi.com. > 220 futon.sunesi.com FTP server (Version 6.00) ready. > Name (futon.sunesi.com:nbm): ftp > 331 Guest login ok, send your email address as password. > Password: > 230 Guest login ok, access restrictions apply. > Remote system type is UNIX. > Using binary mode to transfer files. > ftp> quot %s%s%s%s > 500 '%S%S%S%S': command not understood. > > A 3.4 ftp client to 'futon' also segfaults. The ftp server doesn't > segfault in the cases I've tried. this was fixed in HEAD, RELENG_4 and RELENG_3 on Jun 23 2000 (cmds.c 1.17, 1.16.2.1 and 1.14.2.3) /fjoe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0010031215170.25765-100000>