[9595] in bugtraq
Re: [proftpd-l] root compromise ? (fwd)
daemon@ATHENA.MIT.EDU (Nic Bellamy)
Tue Feb 16 12:04:12 1999
Date: Mon, 15 Feb 1999 20:36:33 +1300
Reply-To: Nic Bellamy <sky@WIBBLE.NET>
From: Nic Bellamy <sky@WIBBLE.NET>
X-To: Dirk Moerenhout <dirk@STAF.PLANETINTERNET.BE>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <990214005058.24692A-100000@werchter>
On Sun, 14 Feb 1999, Dirk Moerenhout wrote:
> Proftpd 1.2.0pre1 is not patched. If it is, then it is very weird that
> there is a patch on the ftp-site for this problem.
ProFTPd 1.2.0pre2 is available from ftp://ftp.proftpd.org/distrib/ - it
fixes this particular problem, and a few others (including a memory leak
when doing `ls -lR' that could have easily been used as a DoS attack).
So, forget the patches, just upgrade :-)
Regards,
Nic.
#include ".signature"
