SSRT3603 wu-ftpd off by one vulnerability (rev.1)

Berlene Herren · ‎09-19-2003

A security bulletin has been issued:

-----------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0309-277
Originally issued: 02 September 2003
Last revised: 15 September 2003
SSRT3603 wu-ftpd off by one vulnerability (rev.1)
-----------------------------------------------------------------

To access the bulletin from the itrc:

Select "maintenance and support"
Select "search technical knowledge base"
Select "HP-UX Software Security Bulletins"
Select "Search by Security Bulletin Number"
Enter " HPSBUX0309-277"
Search

===============================================================

Berlene

http://www.mindspring.com/~bkherren/dobes/index.htm

Gerald Miller_1 · ‎09-29-2003

Berlene,
The bulletin says that I can download the new WU-FTPD from http://software.hp.com.

However, when I search for WU-FTPD there, I can only find the older version (B.11.00.01.00), and not the new revision (B.11.00.01.003).

Is there anyway for us to get a direct link?
Thanks,
Gerald

If it compiles, it's good. If it boots up, it's perfect.

Steven E. Protter · ‎09-29-2003

I've just downloaded the version indicated in the security bulliten for 11.00 and 11.11

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=WUFTPD26

SEP

Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com

Berlene Herren · ‎09-29-2003

Hi Gerald
I just downloaded it for 11.0 and installed...

root@cricket-/>swlist -l fileset | grep WUFTP-26.INETSVCS-FTP

Returns

WUFTP-26.INETSVCS-FTP B.11.00.01.003 Internet Services Fileset

That's not to say that it was there when you downloaded it, but it seems to be now.

Regards,
Berlene

http://www.mindspring.com/~bkherren/dobes/index.htm

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

SSRT3603 wu-ftpd off by one vulnerability (rev.1)

SSRT3603 wu-ftpd off by one vulnerability (rev.1)

Re: SSRT3603 wu-ftpd off by one vulnerability (rev.1)

Re: SSRT3603 wu-ftpd off by one vulnerability (rev.1)

Re: SSRT3603 wu-ftpd off by one vulnerability (rev.1)