Wu-ftpd FTP server contains remotely exploitable off-by-one bug
Kris Kennaway
kris at obsecurity.org
Thu Jul 31 14:37:36 PDT 2003
On Thu, Jul 31, 2003 at 05:31:46PM -0400, polytarp at cyberspace.org wrote:
> On Thu, 31 Jul 2003 mike at sentex.net wrote:
>
> > At 02:40 PM 31/07/2003 -0400, polytarp at cyberspace.org wrote:
> >
> >
> > >Buffer overflows which work on Linux do not work on FreeBSD.
> >
> >
> > You need to qualify that statement. Yes, there are some that will not be
> > relevant and the exact same exploit code will not work. But "Buffer
> > overflows which work on Linux do not work on FreeBSD" is dangerously
> > misleading.... In the case of wu-ftpd there have been several issues in the
> > past that affected both FreeBSD and Linux. Same bug, different exploit
> > code, both vulnerable. That being said, I havent had a chance to review
> > this one so I dont know.
> >
>
> No, you're wrong. Even a different COMPILER -- let alone a different
> OPERATING SYSTEM -- can make buffer overflows not work.
1) Can != will. In most cases these vulnerabilities are fairly
OS-neutral.
2) It is true that a given exploit for the overflowable buffer will
not usually work on a different OS, but that doesn't mean that one
cannot be easily developed to exploit that OS.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20030731/2f23c04c/attachment.bin
More information about the freebsd-security
mailing list