|
Family: Debian Local Security Checks --> Category: infos
[DSA087] DSA-087-1 wu-ftpd Vulnerability Scan
Vulnerability Scan Summary DSA-087-1 wu-ftpd
Detailed Explanation for this Vulnerability Test
CORE ST reports that an exploit has been found for a bug in the wu-ftpd
glob code (this is the code that handles filename wildcard expansion).
Any logged in user (including anonymous FTP users) can exploit the bug
to gain root rights on the server.
This has been corrected in version 2.6.0-6 of the wu-ftpd package.
Solution : http://www.debian.org/security/2001/dsa-087
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|