Bugtraq mailing list archives

Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd)

From: bero () REDHAT DE (Bernhard Rosenkraenzer)
Date: Sat, 1 Jul 2000 08:36:45 +0200


On Thu, 29 Jun 2000, Kenn Humborg wrote:

The latest wu-ftpd RPM for Red Hat 4.2 is also vulnerable.  I notified
Red Hat about this on Saturday last, but no word from them yet.


Who did you talk to? I never got a message, and I'm maintaining our
wu-ftpd package.
We're aware of the fact that 4.2 (and 3.x for that matter) are affected,
but we're no longer supporting versions prior to 5.2. If you absolutely
need to continue using it, get the source RPM from 5.x and rebuild it.

LLaP
bero

Current thread:

Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd) Bernhard Rosenkraenzer (Jun 30)
- Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd) Kenn Humborg (Jul 01)
- <Possible follow-ups>
- Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd) Gregory A Lundberg (Jun 30)
  - Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd) Tom Perrine (Jul 02)
  - Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd) wayout (Jul 03)