Nessus Plugin #18010
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA705] DSA-705-1 wu-ftpd
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2005 Michel Arboi
- Summary:
- DSA-705-1 wu-ftpd
- Version:
- $Revision: 1.2 $
- Cve_id:
- CAN-2003-0854, CAN-2005-0256
- Bugtraq_id:
- -
- Xrefs:
- DSA:705
- Description:
Several denial of service conditions have been discovered in wu-ftpd,
the popular FTP daemon. The Common Vulnerabilities and Exposures
project identifies the following problems:
Adam Zabrocki discovered a denial of service condition in wu-ftpd
that could be exploited by a remote user and cause the server to
slow down by resource exhaustion.
Georgi Guninski discovered that /bin/ls may be called from within
wu-ftpd in a way that will result in large memory consumption and
hence slow down the server.
For the stable distribution (woody) these problems have been fixed in
version 2.6.2-3woody5.
For the unstable distribution (sid) these problems have been fixed in
version 2.6.2-19.
We recommend that you upgrade your wu-ftpd package.
Solution : http://www.debian.org/security/2005/dsa-705
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.