> AFAIK it is along the line wit
>
> "site exec tar cvzf -rsh-command blafasel host:tar.tgz"
Probably something else - I don't believe Red Hat would have that
nice old _PATH_EXECPATH bug for so long :-). It might be related
to the feature that wu-ftpd can send you a tar of a directory if
you do
Hi,
(debian bug, Elliot)
> Package: wu-ftpd
> Version: 2.4-23
>
> I don't know the exploit, but tar in the anon ftp area is the
> same as the normal one, so I think Debian systems may have this
> problem too. Two messages from the linux-security list (the
> second one includes a patch for tar -
Package: wu-ftpd
Version: 2.4-23
I don't know the exploit, but tar in the anon ftp area is the
same as the normal one, so I think Debian systems may have this
problem too. Two messages from the linux-security list (the
second one includes a patch for tar - only for anon ftp, not
for the normal on
3 matches
Mail list logo