[Dailydave] ProFTPD commandbuffersize
Evgeny Legerov
admin at gleg.net
Wed Nov 22 10:45:16 EST 2006
Hi,
I've been suprised to hear that my 2 years old ProFTPD stack overflow exploit is
just another stupid configuration bug:
http://www.frsirt.com/english/advisories/2006/4451 ;-)
Well, I never discovered CommandBufferSize thing and vd_proftpd module exploits
completely different bug.
If you have a Immunity CANVAS license, you can see it for yourself - vd_proftpd
available as a part of VulnDisco Sample Pack since Monday.
--
Best regards,
Evgeny Legerov
GLEG Ltd, CEO
http://www.gleg.net
More information about the Dailydave
mailing list