WU-FTPD fb_realpath() Off-By-One Buffer Overflow

Jason Haase · ‎05-15-2007

I use a tool called found stone which finds vulnerabilities and it sees WU-FTPD Off-by-one Buffer overflow/

For versions 11.0 and 11.1 of HU-UX there is a patch depot for WU-FTP but not for 11.23.

I am running 11.23 on Sparc, any body know where I can get a depot for the latest patch for this or what I can do to get this resolved?

Steven Schweda · ‎05-15-2007

> I am running 11.23 on Sparc [...]

I'd say that that's a neat trick all by
itself. Does Sun know about this?

There seems to be a simple source patch
available:

http://www.wuftpd.org/
ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_2.6.2/realpath.patch

There are some advantages to building
open-source software from the source.

Jason Haase · ‎05-15-2007

.

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

WU-FTPD fb_realpath() Off-By-One Buffer Overflow

WU-FTPD fb_realpath() Off-By-One Buffer Overflow

Re: WU-FTPD fb_realpath() Off-By-One Buffer Overflow

Re: WU-FTPD fb_realpath() Off-By-One Buffer Overflow