qvt-term.4.2.dos.txt

1999-11-10T00:00:00
ID PACKETSTORM:11511
Type packetstorm
Reporter Underground Security Systems Research
Modified 1999-11-10T00:00:00

Description

                                        
                                            `Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server Vulnerability  
  
PROBLEM  
  
UssrLabs found a Local/Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server,  
the buffer overflow is caused by a long user name / password, 2000  
characters,  
and the re-connection to the Ftp Server.  
  
  
There is not much to expand on.... just a simple hole  
  
Example:  
  
Go to: http://www.ussrback.com/qvtfs42/  
  
For the source / binary of this remote / local D.O.S  
  
  
Vendor Status:  
Not Contacted  
  
Vendor Url: http://www.qpc.com  
Program Url:http://www.qpc.com  
  
Credit: USSRLABS  
  
SOLUTION  
Nothing yet.  
  
  
`