Bugtraq mailing list archives
Re: Multiple-Vendor-FTP-Vuln. (old?)
From: Robert van der Meulen <rvdm () debian org>
Date: Tue, 21 Aug 2001 00:12:46 +0200
Hi, Quoting Michael Faurot (mfaurot () atww org):
: i tested an old proftpd bug (ls /../*/../*/../*/../*/../*/../*/../*) on = : many new Linux-Dist.. This bug appears to still be present with Debian Stable (Potato) which uses ProFTPd v1.2.0pre10.
Are you sure ? what exact version are you testing with ?
I tested this with a couple of Debian stable machines, all running with the
latest security updates (i.e. proftpd 1.2.0pre10-2.0potato1), and couldn't
reproduce it.
Greets,
Robert
--
Linux Generation
encrypted mail preferred. finger rvdm () debian org for my GnuPG/PGP key.
<doogie> 'How to Raise Your I.Q. by Eating Gifted Children'
Current thread:
- Multiple-Vendor-FTP-Vuln. (old?) Enrico Kern (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) skip (Aug 20)
- RE: Multiple-Vendor-FTP-Vuln. (old?) jeev (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Scott Dier (Aug 20)
- RE: Multiple-Vendor-FTP-Vuln. (old?) Mike Jakubik (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Bernhard Rosenkraenzer (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Roman Drahtmueller (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Dmitriy Kropivnitskiy (Aug 21)
- <Possible follow-ups>
- Re: Multiple-Vendor-FTP-Vuln. (old?) Michael Faurot (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Robert van der Meulen (Aug 20)
- RE: Multiple-Vendor-FTP-Vuln. (old?) E. van Elk (Aug 20)
- RE: Multiple-Vendor-FTP-Vuln. (old?) Michael Bellears (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) Michael Faurot (Aug 20)
- Re: Multiple-Vendor-FTP-Vuln. (old?) skip (Aug 20)