Maximum Rumpus FTP Server 服务拒绝漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1106382 漏洞类型 未知
发布时间 2001-06-12 更新时间 2006-09-05
CVE编号 CVE-2001-0706 CNNVD-ID CNNVD-200109-060
漏洞平台 OSX CVSS评分 2.1
|漏洞来源
https://www.exploit-db.com/exploits/20922
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200109-060
|漏洞详情
MaximumRumpusFTPServer2.0.3dev及其早期版本存在漏洞。攻击者可以借助指定大量子文件夹的mkdir命令导致服务拒绝(崩溃)。
|漏洞EXP
source: http://www.securityfocus.com/bid/2864/info

Rumpus FTP Server is an implementation for MacOS which allows file-sharing across TCP/IP connections.

Rumpus FTP is prone to a denial of service. An ftp user can engage the attack by making a directory with an unusual number of sub-folders. This forces the software to quit, as it is unable to handle the creation of so many directories at one time. The FTP server must be rebooted to regain normal functionality.

It is required that a user be logged in to carry out this attack. It may be possible for remote users to exploit this vulnerability, but authentication is required and anonymous ftp access does not grant users the privileges neccesary to create directories. 

Executing command 'mkdir A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A' will make Rumpus quit.
|参考资料

来源:XF
名称:rumpus-ftp-directory-dos(6699)
链接:http://xforce.iss.net/static/6699.php
来源:BID
名称:2864
链接:http://www.securityfocus.com/bid/2864
来源:BUGTRAQ
名称:20010612RumpusFTPDoSvol.2
链接:http://www.securityfocus.com/archive/1/190932