bug-inetutils
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-inetutils] Serious security vulnerability in ftpd


From: Davin McCall
Subject: [bug-inetutils] Serious security vulnerability in ftpd
Date: Tue, 4 Nov 2003 19:47:02 +1100

Hi,

GNU Inetutils vulnerability -
in ftpd/auth.c, function auth_user(), there are some checks to see if users are 
authorized to access the ftp service. This is done with checkuser() which 
returns 1 (true) if user is allowed to access the service and 0 (false) if not.

However, the checks act as if the return is the other way around.

Ie. If a user is NOT listed in /etc/ftpusers, they WILL be allowed to login via 
ftp. If on the other hand they ARE listed in ftpusers, they will NOT be allowed 
to login.

This is a serious security problem. It exists in versions 1.4.1 and 1.4.2, and 
possibly other priors though I haven't checked.

regards,

Davin McCall.




reply via email to

[Prev in Thread] Current Thread [Next in Thread]