ProFTPD and gzip vulnerabilities

In Ubuntu distribution, attackers can use specially crafted zip file to get root previlege. Affected releases are Ubuntu 4.10 (Warty Warthog) and Ubuntu 5.04 (Hoary Hedgehog).

ProFTPD has format string vulnerabilities which can be exploited if the ftp server uses backend databases. Some commands can use ProFTPD to query the backend DBMS. This sort of bugs is interesting in that the ftp server would be available to all IP addresses, but the DBMS would be not. Also, we can see this bug as another kind of indirection in querying the internal servers behind firewalls similar to query internal networks using some connect commands of http proxies and to query using some port commands of ftp.

Similar Posts:

Post a Comment

Your email is never published nor shared.