Debian Security Advisory

DSA-457-1 wu-ftpd -- several vulnerabilities

Date Reported:
08 Mar 2004
Affected Packages:
Security database references:
In the Bugtraq database (at SecurityFocus): BugTraq ID 9832.
In Mitre's CVE dictionary: CVE-2004-0148, CVE-2004-0185.
More information:

Two vulnerabilities were discovered in wu-ftpd:

  • CAN-2004-0148

    Glenn Stewart discovered that users could bypass the directory access restrictions imposed by the restricted-gid option by changing the permissions on their home directory. On a subsequent login, when access to the user's home directory was denied, wu-ftpd would fall back to the root directory.

  • CAN-2004-0185

    A buffer overflow existed in wu-ftpd's code which deals with S/key authentication.

For the stable distribution (woody) these problems have been fixed in version 2.6.2-3woody4.

For the unstable distribution (sid) these problems have been fixed in version 2.6.2-17.1.

We recommend that you update your wu-ftpd package.

Fixed in:

Debian GNU/Linux 3.0 (woody)

Architecture-independent component:
Intel IA-32:
Intel IA-64:
Motorola 680x0:
Big endian MIPS:
Little endian MIPS:
IBM S/390:
Sun Sparc:

MD5 checksums of the listed files are available in the original advisory.