[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug-inetutils] Serious security vulnerability in ftpd
From: |
Davin McCall |
Subject: |
[bug-inetutils] Serious security vulnerability in ftpd |
Date: |
Tue, 4 Nov 2003 19:47:02 +1100 |
Hi,
GNU Inetutils vulnerability -
in ftpd/auth.c, function auth_user(), there are some checks to see if users are
authorized to access the ftp service. This is done with checkuser() which
returns 1 (true) if user is allowed to access the service and 0 (false) if not.
However, the checks act as if the return is the other way around.
Ie. If a user is NOT listed in /etc/ftpusers, they WILL be allowed to login via
ftp. If on the other hand they ARE listed in ftpusers, they will NOT be allowed
to login.
This is a serious security problem. It exists in versions 1.4.1 and 1.4.2, and
possibly other priors though I haven't checked.
regards,
Davin McCall.
- [bug-inetutils] Serious security vulnerability in ftpd,
Davin McCall <=