Multiple Vendor FTP Conversion Vulnerability

Multiple Vendor FTP Conversion Vulnerability

Solution:
The vendor has released updated versions of the software. Please contact the vendor for the latest version.

Debian has released an advisory (DSA 377-1) and fixes to address this issue. Please see references for more details.

Conectiva has released an advisory (CLA-2003:748) and fixes to address this issue.

Washington University wu-ftpd 2.4.2 (beta 18) VR4

Debian wu-ftpd-academ_2.6.2-3woody2_all.deb
For Debian GNU/Linux 3.0 alias woody. Architecture independent components.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd-academ_ 2.6.2-3woody2_all.deb

Debian wu-ftpd_2.6.2-3woody2_alpha.deb
For Debian GNU/Linux 3.0 alias woody. Alpha architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_alpha.deb

Debian wu-ftpd_2.6.2-3woody2_arm.deb
For Debian GNU/Linux 3.0 alias woody. ARM architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_arm.deb

Debian wu-ftpd_2.6.2-3woody2_hppa.deb
For Debian GNU/Linux 3.0 alias woody. HP Precision architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_hppa.deb

Debian wu-ftpd_2.6.2-3woody2_i386.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-32 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_i386.deb

Debian wu-ftpd_2.6.2-3woody2_ia64.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-64 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_ia64.deb

Debian wu-ftpd_2.6.2-3woody2_m68k.deb
For Debian GNU/Linux 3.0 alias woody. Motorola 680x0 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_m68k.deb

Debian wu-ftpd_2.6.2-3woody2_mips.deb
For Debian GNU/Linux 3.0 alias woody. Big endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mips.deb

Debian wu-ftpd_2.6.2-3woody2_mipsel.deb
For Debian GNU/Linux 3.0 alias woody. Little endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mipsel.deb

Debian wu-ftpd_2.6.2-3woody2_powerpc.deb
For Debian GNU/Linux 3.0 alias woody. PowerPC architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_powerpc.deb

Debian wu-ftpd_2.6.2-3woody2_s390.deb
For Debian GNU/Linux 3.0 alias woody. IBM S/390 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_s390.deb

Debian wu-ftpd_2.6.2-3woody2_sparc.deb
For Debian GNU/Linux 3.0 alias woody. Sun Sparc architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_sparc.deb

Washington University wu-ftpd 2.5 .0

Debian wu-ftpd-academ_2.6.2-3woody2_all.deb
For Debian GNU/Linux 3.0 alias woody. Architecture independent components.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd-academ_ 2.6.2-3woody2_all.deb

Debian wu-ftpd_2.6.2-3woody2_alpha.deb
For Debian GNU/Linux 3.0 alias woody. Alpha architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_alpha.deb

Debian wu-ftpd_2.6.2-3woody2_arm.deb
For Debian GNU/Linux 3.0 alias woody. ARM architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_arm.deb

Debian wu-ftpd_2.6.2-3woody2_hppa.deb
For Debian GNU/Linux 3.0 alias woody. HP Precision architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_hppa.deb

Debian wu-ftpd_2.6.2-3woody2_i386.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-32 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_i386.deb

Debian wu-ftpd_2.6.2-3woody2_ia64.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-64 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_ia64.deb

Debian wu-ftpd_2.6.2-3woody2_m68k.deb
For Debian GNU/Linux 3.0 alias woody. Motorola 680x0 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_m68k.deb

Debian wu-ftpd_2.6.2-3woody2_mips.deb
For Debian GNU/Linux 3.0 alias woody. Big endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mips.deb

Debian wu-ftpd_2.6.2-3woody2_mipsel.deb
For Debian GNU/Linux 3.0 alias woody. Little endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mipsel.deb

Debian wu-ftpd_2.6.2-3woody2_powerpc.deb
For Debian GNU/Linux 3.0 alias woody. PowerPC architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_powerpc.deb

Debian wu-ftpd_2.6.2-3woody2_s390.deb
For Debian GNU/Linux 3.0 alias woody. IBM S/390 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_s390.deb

Debian wu-ftpd_2.6.2-3woody2_sparc.deb
For Debian GNU/Linux 3.0 alias woody. Sun Sparc architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_sparc.deb

Washington University wu-ftpd 2.6 .0

Debian wu-ftpd-academ_2.6.2-3woody2_all.deb
For Debian GNU/Linux 3.0 alias woody. Architecture independent components.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd-academ_ 2.6.2-3woody2_all.deb

Debian wu-ftpd_2.6.2-3woody2_alpha.deb
For Debian GNU/Linux 3.0 alias woody. Alpha architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_alpha.deb

Debian wu-ftpd_2.6.2-3woody2_arm.deb
For Debian GNU/Linux 3.0 alias woody. ARM architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_arm.deb

Debian wu-ftpd_2.6.2-3woody2_hppa.deb
For Debian GNU/Linux 3.0 alias woody. HP Precision architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_hppa.deb

Debian wu-ftpd_2.6.2-3woody2_i386.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-32 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_i386.deb

Debian wu-ftpd_2.6.2-3woody2_ia64.deb
For Debian GNU/Linux 3.0 alias woody. Intel IA-64 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_ia64.deb

Debian wu-ftpd_2.6.2-3woody2_m68k.deb
For Debian GNU/Linux 3.0 alias woody. Motorola 680x0 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_m68k.deb

Debian wu-ftpd_2.6.2-3woody2_mips.deb
For Debian GNU/Linux 3.0 alias woody. Big endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mips.deb

Debian wu-ftpd_2.6.2-3woody2_mipsel.deb
For Debian GNU/Linux 3.0 alias woody. Little endian MIPS architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_mipsel.deb

Debian wu-ftpd_2.6.2-3woody2_powerpc.deb
For Debian GNU/Linux 3.0 alias woody. PowerPC architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_powerpc.deb

Debian wu-ftpd_2.6.2-3woody2_s390.deb
For Debian GNU/Linux 3.0 alias woody. IBM S/390 architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_s390.deb

Debian wu-ftpd_2.6.2-3woody2_sparc.deb
For Debian GNU/Linux 3.0 alias woody. Sun Sparc architecture.
http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3 woody2_sparc.deb

Washington University wu-ftpd 2.6.1

Conectiva wu-ftpd-2.6.1-6U70_4cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/wu-ftpd-2.6.1-6U70_4cl.i3 86.rpm

Conectiva wu-ftpd-2.6.1-8U80_2cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/wu-ftpd-2.6.1-8U80_2cl.i386 .rpm

Washington University wu-ftpd 2.6.2

Conectiva wu-ftpd-2.6.2-13985U90_2cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/wu-ftpd-2.6.2-13985U90_2cl. i386.rpm

anonFTP anonFTP 3.0

Conectiva anonftp-3.0-22686U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/anonftp-3.0-22686U90_1cl.i3 86.rpm