[22337] in bugtraq
Re: Multiple-Vendor-FTP-Vuln. (old?)
daemon@ATHENA.MIT.EDU (Robert van der Meulen)
Mon Aug 20 19:00:50 2001
Date: Tue, 21 Aug 2001 00:12:46 +0200
From: Robert van der Meulen <rvdm@debian.org>
To: Michael Faurot <mfaurot@atww.org>
Cc: bugtraq@securityfocus.com
Message-ID: <20010821001246.A9136@wiretrip.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <9lrnt0$k0p$1@phzzzt.atww.org>
Hi,
Quoting Michael Faurot (mfaurot@atww.org):
> : i tested an old proftpd bug (ls /../*/../*/../*/../*/../*/../*/../*) on =
> : many new Linux-Dist..
> This bug appears to still be present with Debian Stable (Potato) which
> uses ProFTPd v1.2.0pre10.
Are you sure ? what exact version are you testing with ?
I tested this with a couple of Debian stable machines, all running with the
latest security updates (i.e. proftpd 1.2.0pre10-2.0potato1), and couldn't
reproduce it.
Greets,
Robert
--
Linux Generation
encrypted mail preferred. finger rvdm@debian.org for my GnuPG/PGP key.
<doogie> 'How to Raise Your I.Q. by Eating Gifted Children'
