From owner-freebsd-security  Fri Nov 30 15:52:10 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mail1.zer0.org (klapaucius.zer0.org [204.152.186.45])
	by hub.freebsd.org (Postfix) with ESMTP id A43B537B405
	for <freebsd-security@freebsd.org>; Fri, 30 Nov 2001 15:52:05 -0800 (PST)
Received: by mail1.zer0.org (Postfix, from userid 1001)
	id 8461F239A08; Fri, 30 Nov 2001 15:52:05 -0800 (PST)
Date: Fri, 30 Nov 2001 15:52:05 -0800
From: Gregory Sutter <gsutter@zer0.org>
To: Konrad Heuer <kheuer@gwdu60.gwdg.de>
Cc: freebsd-security@freebsd.org
Subject: Re: ISSalert: ISS Security Alert: WU-FTPD Heap Corruption Vulnerability (fwd)
Message-ID: <20011130155205.E96703@klapaucius.zer0.org>
References: <20011130095138.F55193-100000@gwdu60.gwdg.de>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="qFgkTsE6LiHkLPZw"
Content-Disposition: inline
In-Reply-To: <20011130095138.F55193-100000@gwdu60.gwdg.de>
User-Agent: Mutt/1.3.22.1i
Organization: Zer0
X-Purpose: For great justice!
Mail-Copies-To: poster
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


--qFgkTsE6LiHkLPZw
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On 2001-11-30 09:53 +0100, Konrad Heuer <kheuer@gwdu60.gwdg.de> wrote:
>=20
> Any opinions whether wu-ftpd on FreeBSD is vulnerable too? To my mind, it
> seems so.

Given wu-ftpd's history, it is just a terrible idea to run it=20
anywhere on any platform.=20

But maybe that's just me.

Greg
--=20
Gregory S. Sutter                                    Fnord.
mailto:gsutter@zer0.org=20
http://www.zer0.org/~gsutter/=20
hkp://wwwkeys.pgp.net/0x845DFEDD

--qFgkTsE6LiHkLPZw
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Comment: ''

iD8DBQE8CBulIBUx1YRd/t0RAsekAKCHB8/zFNZQWV5V2qHYUoDk99yS3QCeMKDE
a1zJ+sOzdvtIAMmscLIOFdQ=
=wO2a
-----END PGP SIGNATURE-----

--qFgkTsE6LiHkLPZw--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message