Nite Server FTPd Multiple DoS Vulnerabilities
BID:1230
Info
Nite Server FTPd Multiple DoS Vulnerabilities
| Bugtraq ID: | 1230 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | May 19 2000 12:00AM |
| Updated: | May 19 2000 12:00AM |
| Credit: | Discovered by Wyzewun and publicized in Forbidden Knowledge Ezine 8 on December 26, 1999. |
| Vulnerable: |
Thomas Krebs Nite Server 1.7 Thomas Krebs Nite Server 1.6 Thomas Krebs Nite Server 1.5 |
| Not Vulnerable: |
Thomas Krebs Nite Server 1.73 b |
Discussion
Nite Server FTPd Multiple DoS Vulnerabilities
Multiple denial of service vulnerabilities exist in Nite Server FTP daemon.
1) Requesting an unusually long string of characters in the user command will cause the daemon to utilize all available memory, leaving the server to hang.
2) If a remote user enters endless characters in the password field without ever terminating the request, the daemon allocates all available memory and denies any new connections
3) By logging on and making a request which consists of malformed data and immediately logging off, the ftp server will deny any new connections.
4) When renaming files, if the new filename provided is too long, the server will stop accepting new connections.
Multiple denial of service vulnerabilities exist in Nite Server FTP daemon.
1) Requesting an unusually long string of characters in the user command will cause the daemon to utilize all available memory, leaving the server to hang.
2) If a remote user enters endless characters in the password field without ever terminating the request, the daemon allocates all available memory and denies any new connections
3) By logging on and making a request which consists of malformed data and immediately logging off, the ftp server will deny any new connections.
4) When renaming files, if the new filename provided is too long, the server will stop accepting new connections.
Exploit / POC
Nite Server FTPd Multiple DoS Vulnerabilities
see discussion.
see discussion.
Solution / Fix
Nite Server FTPd Multiple DoS Vulnerabilities
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Nite Server FTPd Multiple DoS Vulnerabilities
References:
References:
- Forbidden Knowledge Ezine #8 (Forbidden Knowledge)
- Nite Server Homepage (Thomas Krebs)