Date: Thu, 08 Feb 2001 20:52:47 -0500 From: madodelatptdprolog.net Subject: [VOICENWS] Malicious exploit of OS/2 Warp 4.5 FTP server V4.3 From: Jack Troughton Systems Affected: - OS/2 Warp 4.5 FTP server V4.0/4.2 - OS/2 Warp 4.5 FTP server V4.3 - Probably other versions of the software as well. THE PROBLEM The FTP server that comes with OS/2 Warp 4.5 TCP/IP can be brought down by a malicious connection attempt. It's an exploit that can be run on the ftpd in tcpip 4.3. The fix is available; it's IC27721. http://www.hwa-security.net/downloads/HWA-warpcrash.c ----------- To unsubscribe yourself from this list, send the following message to majormajoratos2voice.org unsubscribe news end