16 matches found
CVE-1999-0082
CWD root command in ftpd allows root access...
EUVD-1999-0075
Malware in sbrugna...
EUVD-1999-0035
Malware in sbrugna...
DLA-2123-1 pure-ftpd - security update
Bulletin has no description...
Updated pure-ftpd packages fix security vulnerability
Fixes loading the configuration file...
SuSE 11.1 Security Update : pure-ftpd (SAT Patch Number 5091)
The OES Netware add-ons in pure-ftpd had a security problem and some bugs, which are fixed by this update. A local attacker could overwrite local files when the OES remote server feature of pure-ftpd is enabled due to a directory traversal. CVE-2011-3171 Additionally the following bugs have been...
HP-UX PHNE_14479 : s700_800 11.00 ftpd(1M) and ftp(1) patch
s700800 11.00 ftpd1M and ftp1 patch : ftp client interprets server provided filenames which can cause commands to be run on the client. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHNE14479. The text itself...
Debian DSA-357-1 : wu-ftpd - remote root exploit
iSEC Security Research reports that wu-ftpd contains an off-by-one bug in the fbrealpath function which could be exploited by a logged-in user local or anonymous to gain root privileges. A demonstration exploit is reportedly available. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
RHEL 2.1 : wu-ftpd (RHSA-2004:096)
An updated wu-ftpd package that fixes two security issues is now available. The wu-ftpd package contains the Washington University FTP File Transfer Protocol server daemon. FTP is a method of transferring files between machines. Glenn Stewart discovered a flaw in wu-ftpd. When configured with...
Important: Red Hat Security Advisory: wu-ftpd security update
An updated wu-ftpd package that fixes two security issues is now available. The wu-ftpd package contains the Washington University FTP File Transfer Protocol server daemon. FTP is a method of transferring files between machines. Glenn Stewart discovered a flaw in wu-ftpd. When configured with...
[Full-Disclosure] Fun with /bin/ls, yet still ls better than windows
Georgi Guninski security advisory 62, 2003 Fun with /bin/ls, yet still ls better than windows Systems affected: coreutils - /bin/ls, wu-ftpd DoS Fixed in CVS Risk: Low Date: 22 October 2003 Legal Notice: This Advisory is Copyright c 2003 Georgi Guninski. You may distribute it unmodified. You may...
WU-FTPD Security Advisory
Upgraded WU-FTPD packages are available for Slackware 9.0 and - -current. These fix a problem where an attacker could use a specially crafted filename in conjunction with WU-FTPD's conversion feature mostly used to compress files, or produce tar archives to execute arbitrary commands on the serve...
[SECURITY] [DSA-377-1] New wu-ftpd packages fix insecure program execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 377-1 [email protected] http://www.debian.org/security/ Matt Zimmerman September 4th, 2003 http://www.debian.org/security/faq -...
Important: Red Hat Security Advisory: wu-ftpd security update
Updated wu-ftpd packages are available that fix an off-by-one buffer overflow. The wu-ftpd package contains the Washington University FTP File Transfer Protocol server daemon. FTP is a method of transferring files between machines. An off-by-one bug has been discovered in versions of wu-ftpd up t...
Raptor Firewall FTP Bounce vulnerability
Raptor Firewall FTP Bounce vulnerability Summary: The Raptor Firewall can make an FTP server behind it vulnerable to the well-known FTP bounce vulnerability even if the FTP server used is not susceptible to this issue. Overview: While performing a penetration test for a customer, we discovered th...
WU-FTPD 2.6 - File Globbing Heap Corruption
WU-FTPD 2.6 - File Globbing Heap Corruption source: https://www.securityfocus.com/bid/3581/info Wu-Ftpd is an FTP server based on the BSD 'ftpd' that is maintained by Washington University. Wu-Ftpd allows clients to organize files for FTP actions based on "file globbing" patterns. File globbing i...