[11562] in bugtraq
wu-ftpd 2.5.0 mapped_path bugfix rpms and corrected patch
daemon@ATHENA.MIT.EDU (Firstname Lastname)
Sat Aug 28 17:33:32 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19990825090748.A23313@boehm.org>
Date: Wed, 25 Aug 1999 09:07:48 +0200
Reply-To: typo@SCENE.AT
From: Firstname Lastname <typo@SCENE.AT>
X-To: Bugtraq List <BUGTRAQ@securityfocus.com>
To: BUGTRAQ@SECURITYFOCUS.COM
Hi,
the bug's finally public.. patching time:
i've made rh 4.2, 5.0 and 6.0 rpms(and srpms) available on
http://teso.scene.at/wuftpd/
i've also corrected lcamtuf's patch not to add a / to
mapped_path everytime client tries to CWD after mapped_path
is too long(this is just for beauty and no security issue).
well, better patch fast.. exploits, including ours, soon will
make their round in certain groups (or already have, heh).
cya,
typo
--
<Szef> typo: you are a threat. your mind is Insane
<SDoL> typo: du bist wahrhaft krank!
<oxigen> typo , du bist krank
