The Hyperion FTP Server v2.8.11 and below for Windows 95/98/NT/2000 contains a buffer overflow in ftpservx.dll which allows remote code execution.
a852a01717f525ea2029404cc63c43275bb34de7252eca8aec2116d4637f10b7hi
Hyperion FTP Server (http://www.mollensoft.com/ )is a
powerful, reliable FTP server for Windows 95/98/NT/2000,
and supports all basic FTP commands, and much more, such as
passive mode.
A vulnerability exists in Hyperion Ftp Server (version
2.8.11)which allows a remote
user to execute an arbitrary code ,it is a similar
vulnerability of Enceladus Server Suite
I believe that the problem reside in the use of Marby
Socket Window and
ftpservx.dll
who does not support dir+(buffer=300 byte)
Access violation - code c0000005 (first chance)
eax=0012bcbc ebx=0012c574 ecx=42424242 edx=7846f5b5
esi=0012bce4 edi=00147ffd
eip=42424242 esp=0012bc24 ebp=0012bc44 iopl=0 nv up
ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b
gs=0000 efl=00000246
42424242 ?? ???
made that eip point towards the beginning of our buffer
makes me think a news methode to backdooring...
it is also noticed that the pass is without encoding
a:/users/"login "
securma massine
french translation :
http://www.itmaroc.com/modules.php?
name=News&file=article&sid=277
_________________________________________________________
Gagne une PS2 ! Envoie un SMS avec le code PS au 61166
(0,35€ Hors coût du SMS)
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed