bugfix for proftpd
Posted: Mon Nov 01, 2010 5:39 pm
Hi,
since I don't know if it's needed in ART psa-proftpd package I thought I just might ask.
A bugfix is out for this vulnerability:
When ProFTPd is compiled with mod_site_misc and when a directory is
writable, an attacker can use mod_site_misc to:
- create a directory located outside the writable directory
- delete a directory located outside the writable directory
- create a symlink located outside the writable directory
- change the time of a file located outside the writable directory
SOURCE:
http://bugs.proftpd.org/show_bug.cgi?id=3519
Thanks a lot.
since I don't know if it's needed in ART psa-proftpd package I thought I just might ask.
A bugfix is out for this vulnerability:
When ProFTPd is compiled with mod_site_misc and when a directory is
writable, an attacker can use mod_site_misc to:
- create a directory located outside the writable directory
- delete a directory located outside the writable directory
- create a symlink located outside the writable directory
- change the time of a file located outside the writable directory
SOURCE:
http://bugs.proftpd.org/show_bug.cgi?id=3519
Thanks a lot.