|
Family: Debian Local Security Checks --> Category: infos
[DSA705] DSA-705-1 wu-ftpd Vulnerability Scan
Vulnerability Scan Summary DSA-705-1 wu-ftpd
Detailed Explanation for this Vulnerability Test
Several denial of service conditions have been discovered in wu-ftpd,
the popular FTP daemon. The Common Vulnerabilities and Exposures
project identifies the following problems:
Adam Zabrocki discovered a denial of service condition in wu-ftpd
that could be exploited by a remote user and cause the server to
slow down by resource exhaustion.
Georgi Guninski discovered that /bin/ls may be called from within
wu-ftpd in a way that will result in large memory consumption and
hence slow down the server.
For the stable distribution (woody) these problems have been fixed in
version 2.6.2-3woody5.
For the unstable distribution (sid) these problems have been fixed in
version 2.6.2-19.
We recommend that you upgrade your wu-ftpd package.
Solution : http://www.debian.org/security/2005/dsa-705
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|