HP-UX 11.0 ftpd SITE EXEC Format String Vulnerability
BID:1505
Info
HP-UX 11.0 ftpd SITE EXEC Format String Vulnerability
| Bugtraq ID: | 1505 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jul 11 2000 12:00AM |
| Updated: | Jul 11 2000 12:00AM |
| Credit: | The original wu-ftpd vulnerability was posted to BugTraq by tf8 <[email protected]> on June 22, 2000. HP issued an advisory regarding HP-UX ftpd on July 11, 2000. |
| Vulnerable: |
HP HP-UX 11.0 |
| Not Vulnerable: |
HP HP-UX 11.0 4 HP HP-UX 10.30 HP HP-UX 10.20 HP HP-UX 10.10 HP HP-UX 10.9 HP HP-UX 10.8 HP HP-UX 10.0 HP HP-UX 9.0 HP HP-UX 8.0 HP HP-UX 7.0 |
Discussion
Solution / Fix
HP-UX 11.0 ftpd SITE EXEC Format String Vulnerability
Solution:
Install the provided temporary binary in /usr/bin/ftpd with permissions 544. Patches will be released shortly.
HP HP-UX 11.0
Solution:
Install the provided temporary binary in /usr/bin/ftpd with permissions 544. Patches will be released shortly.
HP HP-UX 11.0
-
HP ftpd.11.0
This is a temporary binary and should be placed in /usr/lbin/ftpd with permissions 544.
ftp://ftp.cup.hp.com/dist/networking/ftp/ftpd.11.0