Mandrake Linux Security Advisory : wu-ftpd (MDKSA-2000:014)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing a security update.

Description :

Wu-ftpd is vulnerable to a very serious remote attack in the SITE EXEC
implementation. Because of user input going directly into a format
string for a *printf function, it is possible to overwrite important
data, such as a return address, on the stack. When this is
accomplished, the function can jump into shellcode pointed to by the
overwritten eip and execute arbitrary commands as root. While
exploited in a manner similar to a buffer overflow, it is actually an
input validation problem. Anonymous ftp is exploitable making it even
more serious as attacks can come anonymously from anywhere on the
internet.

This update also fixes the setproctitle() vulnerability which involves
a missing character-formatting argument in setproctitle(), a call
which sets the string used to display process identifier information.

Solution :

Update the affected wu-ftpd package.

Risk factor :

High

Family: Mandriva Local Security Checks

Nessus Plugin ID: 61812 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now