 |
|
|
Family: Slackware Local Security Checks --> Category: infos
SSA-2003-259-03 WU-FTPD Security Advisory Vulnerability Scan
Vulnerability Scan Summary
SSA-2003-259-03 WU-FTPD Security Advisory
Detailed Explanation for this Vulnerability Test
Upgraded WU-FTPD packages are available for Slackware 9.0 and
- -current. These fix a problem where a possible hacker could use a
specially crafted filename in conjunction with WU-FTPD's
conversion feature (mostly used to compress files, or produce tar
archives) to execute arbitrary commands on the server.
In addition, a MAIL_ADMIN which has been found to be insecure has
been disabled.
We do not recommend deploying WU-FTPD in situations where security
is required.
Click HERE for more information and discussions on this network vulnerability scan.
|
|
|
|
|
