WarFTPd 1.70.b01.04

From: Jeremy (prrthdat_private)
Date: Fri Dec 14 2001 - 07:38:50 PST

Next message: Curt Wilson: "Re: SMBRelay issues"

Previous message: Tim Russo: "Default Apache install w/ mods"
Next in thread: Demon Internet: "RE: WarFTPd 1.70.b01.04"
Reply: Demon Internet: "RE: WarFTPd 1.70.b01.04"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello all,
  We have several kiosks in our network that are maintained by a third party vender and which I have no control over. In a recent security audit I discovered that these kiosks are running WarFTPd 1.70.b01.04. The vender uses this to update the kiosks. I noticed that eeye.com found a BOF in this exact version and I am looking for an exploit to prove to management that our vender needs to upgrade the software. Also, are there any other vulnerabilities that I should be aware of for this version of WarFTP.

Thanks,
  Jeremy


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Next message: Curt Wilson: "Re: SMBRelay issues"
Previous message: Tim Russo: "Default Apache install w/ mods"
Next in thread: Demon Internet: "RE: WarFTPd 1.70.b01.04"
Reply: Demon Internet: "RE: WarFTPd 1.70.b01.04"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Dec 14 2001 - 11:56:57 PST