Re: wu-ftp vulnerability
At 05:22 PM 11/28/01 -0800, Greg Wiley wrote:
>According to /., wu-ftp has a vulnerability that
>allows root access to files. Check out:
>
>http://www.securityfocus.com/archive/1/242750
>
>Debian 2.2 is on the list.
>
>Apologies if this has been discussed already.
>
Apparently the maintainer is working on it slashdot
has picked up the story so world+dog is no aware of it.
Does this effect wu-ftpd's that don't allow anonymous access?
i.e. if only user's can log on, and I trust my users, can
I stop stressing about it until the fixed version is available?
John
Reply to: