Bugtraq mailing list archives

Re: Ejabberd : Symlink vulnerability during installation process

From: mickael.remond () process-one net
Date: 3 May 2006 21:23:22 -0000

The problem was in the software generating the installer. We have worked with their team and they have been very 
responsive.

The problem has been fixed with the release of a new installer version (Less than one day, about 12  jours :-):
Version: ejabberd-1.1.1_2-linux-installer.bin
Download page: http://www.process-one.net/en/projects/ejabberd/download.html#binaries

Note that the problem was not on ejabberd itself but on its installer generation tool, which is a third-party installer 
generator software.

Best regards,

-- 
Mickaël Rémond
http://www.process-one.net/

Current thread:

Ejabberd : Symlink vulnerability during installation process Julien L. (May 02)
- <Possible follow-ups>
- Re: Ejabberd : Symlink vulnerability during installation process mickael . remond (May 03)