Update: Red Hat, Debian wu-ftpd package

Both Red Hat and Debian have released updated packages which address two security issues identified in the public wu-ftpd daemon.

According to the Red Hat, the flaw discovered in wu-ftpd could be used by an authorised user to bypass directory restrictions.

Another flaw was also detected in the S/Key login handling. This could allow a remote attacker could overflow a buffer andpotentially execute arbitrary code.

More information on the updated package is available from: https://rhn.redhat.com/errata/RHSA-2004-096.html and
http://secunia.com/advisories/11063/

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about DebianRed Hat

Show Comments