Linux vendors address FTP vulnerability

Several Linux vendors were scrambling last week to provide a software patch to correct a serious vulnerability in products that use the Washington University version of FTP, called wu-FTP. First hinted at in April on mailing lists in security circles, the problem involves what's known as the wu-FTP Globbing Heap Corruption Vulnerability, which essentially lets hackers take root control of Linux servers using Washington University's version of wu-FTP.

Washington University last week released a fix for the problem. Red Hat Inc. had a patch, and SuSE Linux AG, Caldera Systems Inc., TurboLinux Inc., Connective Technologies Inc., Cobalt Networks Inc., MandrakeSoft Inc. and Wirex Communications Inc. were also working on patches.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about Caldera SystemsCobalt NetworksConnective TechnologiesMandrakeSoftRed HatSuseTurbolinuxWirex Communications

Show Comments