[501] in linux-security and linux-alert archive
Re: CERT and wu-ftpd advisory
daemon@ATHENA.MIT.EDU (Gordon Dewis)
Wed Dec 6 18:50:46 1995
Date: Mon, 4 Dec 1995 22:43:32 -0500 (EST)
From: Gordon Dewis <gordon@pinetree.pinetree.org>
To: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <Pine.LNX.3.91.951202215220.31195A-100000@evergreen.cc.usm.edu>
On Sat, 2 Dec 1995, Jonathan A. Davis wrote:
> CERT's first advisory concerning a "SITE EXEC" problem was part of
> "CA-94:08.ftpd.vulnerabilities". It is not directly related to the
> current security problem although some confusion (particularly with
> respect to vulnerable wu-ftp versions) may have resulted from it.
>
>
> ------------------------------snip--------------------------------
>
> CA-94:08.ftpd.vulnerabilities 04/14/94
> This advisory addresses two vulnerabilities with some releases of
> fptd and announces new versions and patches to correct these
> problems. ftpd versions affected are wuarchive ftpd 2.0-2.3,
> DECWRL ftpd versions prior to 5.93, and BSDI ftpd version 1.1
> prior to patch level 5. The vulnerabilities addressed are the
> SITE EXEC and race condition vulnerabilities.
>
> ------------------------------snip--------------------------------
>
> BTW, has anyone experienced an actual security breach due to this bug?
> Thankfully, we were not affected. Or, (as happens so often with security
> anyway) if we were, I don't know about it. ;-)
With respect to the SITE EXEC hole, I am aware of one incident where this
may have been one means of access to a site under attack.
--G
--
Gordon Dewis | WWW Virtual Library Geography Section is now at:
4th year Geography Hons | http://www.icomos.org/WWW_VL_Geography.html
Carleton University | NewForce.ca Sysadmin http://www.newforce.ca
