Package: proftpd Version 1.3.0 There is a bug in the proftpd Packeage where the hacker can execute SQL Injection on the Server. And then the hacker is can upload and execute an *.cgi script, that makes the server to an SPAM Server. Thers a new version available (1.3.2), in this version the bug is fixed, please update it in the stable source of debian etch/lenny.
Thank you System: Debian Etch 4.0 Kernel: 2.6.20-xen-r6 -- Kevin Haag Güttingerstrasse 27, 8593 Kesswil Tel. +41 71 460 05 25; Fax +41 71 460 05 26 Mobil: +41 79 602 30 93 [email protected]
