Re: [ILUG] ftp hack?

From: Firestarter (firestart at domain esatclear.ie)
Date: Wed 06 Oct 1999 - 00:04:32 IST

• Next message: Peter Heslin: "Re: [ILUG] Perl & OO"
• Previous message: Dave Rynne: "Re: [ILUG] Redhat 6.1 + IP masq"
• In reply to: Paul Kelly: "Re: [ILUG] ftp hack?"
• Next in thread: Ger Gorman: "Re: [ILUG] ftp hack?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

On Tue, 5 Oct 1999, Paul Kelly wrote:

> There's a known bug in older versions of wu-ftpd. It's your
> common-or-garden buffer overflow problem triggered by exceeding the
> maximum directory length that wu-ftpd assumes but never checks. This is
> a serious problem if you aren't running the patched wuftpd package and
> can lead to someone acquiring root access to your machine.

an update to fix this problem is at:
ftp.esat.net/mirrors/updates.redhat.com/6.0/i386/wu-ftpd-2.5.0-5.6.0.i386.rpm

-- 
If you learn one useless thing every day, in a single year you'll learn
365 useless things.

• Next message: Peter Heslin: "Re: [ILUG] Perl & OO"
• Previous message: Dave Rynne: "Re: [ILUG] Redhat 6.1 + IP masq"
• In reply to: Paul Kelly: "Re: [ILUG] ftp hack?"
• Next in thread: Ger Gorman: "Re: [ILUG] ftp hack?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:40 GMT