Bugtraq mailing list archives
[SECURITY] ftpwatch package has major security problems
From: fifield () CS DAL CA (Jamie Fifield)
Date: Sun, 17 Jan 1999 11:48:22 -0400
-----BEGIN PGP SIGNED MESSAGE----- We have found that the ftpwatch package as distributed in Debian GNU/Linux 1.3 and later distributions has a security problem which makes it trivial for users to gain root access. We recommend that you remove the ftpwatch package immediately. We will be working on a new version of ftpwatch to address these issues and will announce that in a new advisory. - -- Debian GNU/Linux . Security Managers . security () debian org debian-security-announce () lists debian org Christian Hudon . Wichert Akkerman . Martin Schulze <chrish () debian org> . <wakkerma () debian org> . <joey () debian org> -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQB1AwUBNqHg66jZR/ntlUftAQGzgQL8DNAvGsGP3T3oMOuEBlJ2Tu3XkoE8x88e olp7AML4hjCna/y14uoa+nUsekcZR4uaDoz3pPI+gir4YwA0FP9siwNafTC1Hjj6 nh+5/l0tIjko01xEzr4d9glLG4ygKOJD =bm2E -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-security-announce-request () lists debian org with a subject of "unsubscribe". Trouble? Contact listmaster () lists debian org
Current thread:
- Sendmail 8.8.x/8.9.x bugware Michal Zalewski (Dec 11)
- Re: Sendmail 8.8.x/8.9.x bugware Alan Brown (Jan 16)
- Re: Sendmail 8.8.x/8.9.x bugware Michal Zalewski (Dec 12)
- Re: Sendmail 8.8.x/8.9.x bugware Frank Louwers (Jan 18)
- Win95/98 SMB Authentication Vulnerability (fwd) tschweik () FIDUCIA DE (Jan 18)
- [SECURITY] ftpwatch package has major security problems Jamie Fifield (Jan 17)
- Michal's report and sendmail-8.9.2 GvS (Jan 18)
- Re: Sendmail 8.8.x/8.9.x bugware Michal Zalewski (Dec 12)
- Re: Sendmail 8.8.x/8.9.x bugware Jens Hoffmann (Jan 16)
- Re: Sendmail 8.8.x/8.9.x bugware Alan Brown (Jan 17)
- Re: Sendmail 8.8.x/8.9.x bugware John Mizzi (Jan 17)
- Personal web server kiborg (Jan 17)
- Re: Personal web server Dave Pifke (Jan 18)
- Another web-based mail reader hole Dave Pifke (Jan 18)
- Re: Another web-based mail reader hole Peter van Dijk (Jan 19)
- Personal web server kiborg (Jan 17)
- Re: Sendmail 8.8.x/8.9.x bugware Michal Zalewski (Jan 18)
- Re: Sendmail 8.8.x/8.9.x bugware Alan Brown (Jan 16)
- Re: Sendmail 8.8.x/8.9.x bugware Nic Bellamy (Jan 19)