|
|
WU-FTPD restricted-gid Unauthorized Access Vulnerability
WU-FTPD FTP server is reported prone to an unauthorized-access vulnerability. The issue is related to the "restricted-gid" feature supported by WU-FTPD. This feature allows an administrator to restrict FTP user access to certain directories. The vulnerability reportedly allows users to bypass those restrictions through modifying the permissions on their home directory so that they themselves can no longer access it. Under such circumstances, the server may grant the user unauthorized access to the root directory. Further technical details are not known at this time. This record will be updated as more information becomes available. This BID is created in response to Two Possibly New WU-FTPD Vulnerabilities BID 9820, which is being retired. |
|
Privacy Statement |