> - PureFTPd (any version) is not vulnerable. Result is "Simplified wildcard
> expression to *" and the 'ls *' output.
In an ironic twist, PureFTPd (of which you are apparently the author), is
indeed vulnerable to this globbing bug, using variants of the string you
previously posted. Try:
ls .*./*?/.*./*?/.*./*?/.*./*?/.*./*?/.*./*?/.*./*?/.*./*?/.*./*?/
and
ls */.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/*/.*/
against your software. To give you the same level of notice you gave
everyone else, I went ahead and posted this into your bug tracking system
about 30 seconds ago.
Jeff
- Multiple vendors FTP denial of service Frank DENIS (Jedi/Sector One)
- Re: Multiple vendors FTP denial of serv... Daniel Roesen
- Re: Multiple vendors FTP denial of serv... Jeff Dafoe
- Re: Multiple vendors FTP denial of serv... Mike Gleason
- Re: Multiple vendors FTP denial of ... Crist Clark
- Re: Multiple vendors FTP denial of serv... Elias Levy
- Re: Multiple vendors FTP denial of ... Elias Levy
- Bash memory exhaustion (was Re:... Nick Lamb
- Re: Multiple vendors FTP denial... The Flying Hamster
- Re: Multiple vendors FTP denial of serv... JT
- Re: Multiple vendors FTP denial of serv... D. J. Bernstein
