hi

Hyperion FTP Server (https://www.mollensoft.com/ )is a
powerful, reliable FTP server for Windows 95/98/NT/2000,
and supports all basic FTP commands, and much more, such as
passive mode.
A vulnerability exists in Hyperion Ftp Server (version
2.8.11)which allows a remote
user to execute an arbitrary code ,it is a similar
vulnerability of Enceladus Server Suite
I believe that the problem reside in the use of Marby
Socket Window and
 ftpservx.dll
who does not support dir+(buffer=300 byte)
Access violation - code c0000005 (first chance)
eax=0012bcbc ebx=0012c574 ecx=42424242 edx=7846f5b5
esi=0012bce4 edi=00147ffd
eip=42424242 esp=0012bc24 ebp=0012bc44 iopl=0 nv up
ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b
gs=0000 efl=00000246
42424242 ?? ???


made that eip point towards the beginning of our buffer
makes me think a news methode to backdooring...
it is also noticed that the pass is without encoding
a:/users/"login "

securma massine
french translation :
https://www.itmaroc.com/modules.php?
name=News&file=article&sid=277
_________________________________________________________
Gagne une PS2 ! Envoie un SMS avec le code PS au 61166
(0,35€ Hors coût du SMS)