[18474] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: wuftpd 2.6.1 -- example of bad coding

daemon@ATHENA.MIT.EDU (Gregory A Lundberg)
Mon Jan 8 18:13:57 2001

Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id:  <019601c079a9$7f8488c0$090d85cd@vr.net>
Date:         Mon, 8 Jan 2001 14:30:41 -0500
Reply-To: Gregory A Lundberg <lundberg@VR.NET>
From: Gregory A Lundberg <lundberg@VR.NET>
X-To:         Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL>
To: BUGTRAQ@SECURITYFOCUS.COM

> There are two non-exploitable format string bugs in wuftpd 2.6.1.
                ^^^^^^^^^^^^^^^

There are also two you didn't see.

If you're bothered to ask we'd have pointed you to

ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_current/missing_format_st
rings.patch

Where you'll find we fixed all four of them on July 7, 2000.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[18474] in bugtraq

Re: wuftpd 2.6.1 -- example of bad coding

daemon@ATHENA.MIT.EDU (Gregory A Lundberg)Mon Jan 8 18:13:57 2001

daemon@ATHENA.MIT.EDU (Gregory A Lundberg)
Mon Jan 8 18:13:57 2001