Well, in a nutshell, the problem was one that existed in many older versions of FTP
server software (not just WU-FTPd). It has been fixed in more recent versions, that
is, anything released in the last few months shouldn't be vulnerable.
The hole was that if you have any "upload" directories in the area that your FTP
server allows users access to, or even any directories that are world-writable,
someone using WS-FTP could login as anonymous and upload files with very long
filenames. This would overflow a buffer in the server, and the attacker could gain
root access.
Even in the older versions of WU-FTP where this hole existed, if you don't have any
anonymous-ftp or user directories that are world-writable, this exploit cannot be
used. The solution is to find if you have any on your system and chmod them so they
are no longer world-writable, or to upgrade to a newer version of WU-FTPd. Also, it
is probably advisable to disable anonymous FTP altogether unless you have a real need
for it.
Stacy Brown
Acxiom Corp.
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 29, 1999 6:37 PM
To: Firewalls (E-mail)
Subject: WU FTP
Some of our users are using WU FTP, and I vaguely remember hearing
about a security hole in it. Anyone familiar with the problem, and
the solution?
THX,
Pete Goodridge
Abt Associates Inc.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
