https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896130#M752105 enter ftp in at this link:<BR /><A href="http://www4.itrc.hp.com/service/cki/enterService.do?category=c1s9" target="_blank">http://www4.itrc.hp.com/service/cki/enterService.do?category=c1s9</A><BR /><BR />Although I believe that issue is as old as the hills, I think with a recent QPK you'll be just fine.<BR /><BR />Later,<BR />Bill Tue, 04 Feb 2003 09:31:04 GMT Bill McNAMARA_1 2003-02-04T09:31:04Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896129#M752104 I have been asked to investigate the reported vulnerability with ftp and "|" when used in the filename.<BR /><BR /><A href="http://online.securityfocus.com/bid/396/discussion/" target="_blank">http://online.securityfocus.com/bid/396/discussion/</A><BR /><BR />I can't seem to find a relevant patch in the database, can anyone advise the patches I should be looking for. I need to patch 10.20 and 11.0<BR /><BR />Thanks! Tue, 04 Feb 2003 09:20:46 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896129#M752104 Robin King_1 2003-02-04T09:20:46Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896130#M752105 enter ftp in at this link:<BR /><A href="http://www4.itrc.hp.com/service/cki/enterService.do?category=c1s9" target="_blank">http://www4.itrc.hp.com/service/cki/enterService.do?category=c1s9</A><BR /><BR />Although I believe that issue is as old as the hills, I think with a recent QPK you'll be just fine.<BR /><BR />Later,<BR />Bill Tue, 04 Feb 2003 09:31:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896130#M752105 Bill McNAMARA_1 2003-02-04T09:31:04Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896131#M752106 Hi,<BR /><BR />These patches will fix that.( check for any superseded patches if any )<BR /><BR />HP-UX release 10.20 PHNE_13597 <BR />HP-UX release 10.20 PHNE_15544 <BR />HP-UX release 11.00 PHNE_14479 <BR /><BR />you can get this patches from this site itself.<BR /><BR />regards,<BR /><BR />U.SivaKumar<BR /><BR /><BR /><BR /><BR /><BR /><BR /><BR /><BR /><BR /><BR /> Tue, 04 Feb 2003 09:31:21 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896131#M752106 U.SivaKumar_2 2003-02-04T09:31:21Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896132#M752107 Thanks both of you, just found this on the Security Focus website.<BR /><BR />Install the applicable patches for the fileset: InternetSrvcs.INETSVCS-RUN or InternetSrvcs.INET-ENG-A-MAN. <BR /><BR />HP-UX release 10.0,10.01,10.10 PHNE_13596 <BR />HP-UX release 10.16 PHNE_16006 <BR />HP-UX release 10.20 PHNE_13597 <BR />HP-UX release 10.24 PHNE_15802 <BR />HP-UX release 11.00 PHNE_14479 <BR /><BR /><BR /> Tue, 04 Feb 2003 09:33:00 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896132#M752107 Robin King_1 2003-02-04T09:33:00Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896133#M752108 Be aware that patch PHNE_14479 has been superceded by PHNE_23949.<BR /><BR />mark Tue, 04 Feb 2003 14:44:09 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-quot-quot-vulnerability/m-p/2896133#M752108 Mark Greene_1 2003-02-04T14:44:09Z