From owner-freebsd-security Fri Nov 30 2:12:36 2001 Delivered-To: freebsd-security@freebsd.org Received: from pa169.kurdwanowa.sdi.tpnet.pl (pa169.kurdwanowa.sdi.tpnet.pl [213.77.148.169]) by hub.freebsd.org (Postfix) with ESMTP id A196B37B417 for ; Fri, 30 Nov 2001 02:12:33 -0800 (PST) Received: from velvet.zaraska.dhs.org (velvet.zaraska.dhs.org [192.168.11.2]) by pa169.kurdwanowa.sdi.tpnet.pl (Postfix) with ESMTP id 5D96F1DA7; Fri, 30 Nov 2001 00:45:49 +0100 (CET) Received: from velvet.zaraska.dhs.org (velvet.zaraska.dhs.org [127.0.0.1]) by velvet.zaraska.dhs.org (8.11.2/8.11.2) with SMTP id fAUABcQ06897; Fri, 30 Nov 2001 11:11:38 +0100 Date: Fri, 30 Nov 2001 11:11:38 +0100 From: Krzysztof Zaraska To: "Konrad Heuer" Cc: freebsd-security@freebsd.org Subject: Re: ISSalert: ISS Security Alert: WU-FTPD Heap Corruption Vulnerability (fwd) Message-Id: <20011130111138.7a26b526.kzaraska@student.uci.agh.edu.pl> In-Reply-To: <20011130095138.F55193-100000@gwdu60.gwdg.de> References: <20011130095138.F55193-100000@gwdu60.gwdg.de> Organization: University Of Mining And Metallurgy X-Mailer: Sylpheed version 0.6.2 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 30 Nov 2001 09:53:13 +0100 (CET) Konrad Heuer wrote: > Any opinions whether wu-ftpd on FreeBSD is vulnerable too? To my mind, it > seems so. The advisory by Dave Ahmad/Securityfocus.com (see BUGTRAQ archives) says that you can check if you are vulnerable by logging into FTP server and doing ftp> ls ~{ if this segfaults, you are vulnerable. I don't have any machine running wu-ftpd at hand, unfortunately. The diffs from Red Hat patch were already published on this list. Regards, Krzysztof To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message