WS_FTP Home 2007 NetscapeFTPHandler denial of service

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: WS_FTP Home 2007 NetscapeFTPHandler denial of service
From: "Michal Bucko" <michal.bucko@xxxxxxx>
Date: Sat, 21 Apr 2007 22:42:26 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Synopsis:  WS_FTP Home 2007 NetscapeFTPHandler denial of service 
Product:   WS_FTP Home 2007


Author:    Michal Bucko (sapheal)

Issue:
======

WS_FTP Home 2007 NetscapeFTPHandler is prone to a denial of service
vulnerability. The vulnerability stems from null pointer dereference.


ESI 00000000

75DC3E09        MOVZX EAX,WORD PTR [ESI]        



The vulnerability can be triggered by the execution of a function
with improper arguments:

int Initialize ( char *str1, char *str2)  


By the way, WS_FTP server cannot deal with WS_FTP's secure loader - I found
a few other probable problems regarding WS_FTP but, still, couldn't verify 
those. Exception occurs and information appears on the screen. The problem
lies, for the second time, in null pointer dereference. I am probalby going 
to give more information at hack.pl as soon I fully understand the issue 
with 
WS_FTP.

rgds,

michal

Prev by Date: Re: Top Auction 1.0 (viewcat.php) Remote Blind SQL Injection // starhack.org
Next by Date: Allfaclassfieds (level2.php dir) remote file inclusion
Previous by thread: turbolence core 0.0.1 alpha Remote File Inclusion
Next by thread: Re: WS_FTP Home 2007 NetscapeFTPHandler denial of service
Index(es):
- Date
- Thread