Family: Debian Local Security Checks --> Category: infos
[DSA705] DSA-705-1 wu-ftpd Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Several denial of service conditions have been discovered in wu-ftpd,
the popular FTP daemon. The Common Vulnerabilities and Exposures
project identifies the following problems:
Adam Zabrocki discovered a denial of service condition in wu-ftpd
that could be exploited by a remote user and cause the server to
slow down by resource exhaustion.
Georgi Guninski discovered that /bin/ls may be called from within
wu-ftpd in a way that will result in large memory consumption and
hence slow down the server.
For the stable distribution (woody) these problems have been fixed in
For the unstable distribution (sid) these problems have been fixed in
We recommend that you upgrade your wu-ftpd package.
Solution : http://www.debian.org/security/2005/dsa-705
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.