Security Incidents mailing list archives

Re: Wu-ftpd 2.6.2

From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: 19 Apr 2002 23:47:33 +0200

"Costas Karafasoulis" <karafas () mail ariadne-t gr> napisal(a):

  - 15 days ago it was hacked through wu-ftpd 2.6.1 and the attacker
patched the system to wu-ftpd 2.6.2 
    (he had transferred his binary files for wu-ftpd 2.6.2, so I can
not


According to the logs, system was compromised by exploiting SITE EXEC
formatting vulnerability present in wu-ftpd 2.6.0 (patched June 2000).

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw () frasunek com ** PGP: D48684904685DF43EA93AFA13BE170BF *

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

Wu-ftpd 2.6.2 Costas Karafasoulis (Apr 19)
- Re: Wu-ftpd 2.6.2 Przemyslaw Frasunek (Apr 19)