Linux vendors address FTP vulnerability

Several Linux vendors were scrambling last week to provide a software patch to correct a serious vulnerability in products that use the Washington University version of FTP, called wu-FTP. First hinted at in April on mailing lists in security circles, the problem involves what's known as the wu-FTP Globbing Heap Corruption Vulnerability, which essentially lets hackers take root control of Linux servers using Washington University's version of wu-FTP.

Washington University last week released a fix for the problem. Red Hat Inc. had a patch, and SuSE Linux AG, Caldera Systems Inc., TurboLinux Inc., Connective Technologies Inc., Cobalt Networks Inc., MandrakeSoft Inc. and Wirex Communications Inc. were also working on patches.

Join the newsletter!

Error: Please check your email address.

More about Caldera SystemsCobalt NetworksConnective TechnologiesMandrakeSoftRed HatSuseTurbolinuxWirex Communications

Show Comments