Family: Debian Local Security Checks --> Category: infos
[DSA686] DSA-686-1 gftp Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Albert Puigsech Galicia discovered a directory traversal vulnerability
in a proprietary FTP client (CVE-2004-1376) which is also present in
gftp, a GTK+ FTP client. A malicious server could provide a specially
crafted filename that could cause arbitrary files to be overwritten or
created by the client.
For the stable distribution (woody) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your gftp package.
Solution : http://www.debian.org/security/2005/dsa-686
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.