Info

Disclosure

Nov 28, 2001

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

WU-FTPD contains an unspecified flaw that may allow a remote attacker to execute arbitrary code. No further details have been provided.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.6.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

WU-FTPD Development Group	wu-ftpd	2.6.0
		2.6.1
		2.4.x

References

CVE ID: 2001-0935 (see also: NVD)
ISS X-Force ID: 7611
Vendor Specific Advisory URL: http://www.novell.com/linux/security/advisories/2001_043_wuftpd_txt.html
Vendor URL: http://www.wu-ftpd.org/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

WU-FTPD Development Group

wu-ftpd

References

Credit