From owner-freebsd-security  Wed Feb 10 09:13:47 1999
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id JAA22172
          for freebsd-security-outgoing; Wed, 10 Feb 1999 09:13:47 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ns1.yes.no (ns1.yes.no [195.204.136.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA22167
          for <security@FreeBSD.ORG>; Wed, 10 Feb 1999 09:13:45 -0800 (PST)
          (envelope-from eivind@bitbox.follo.net)
Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218])
	by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id SAA26546;
	Wed, 10 Feb 1999 18:13:39 +0100 (CET)
Received: (from eivind@localhost)
	by bitbox.follo.net (8.8.8/8.8.6) id SAA03861;
	Wed, 10 Feb 1999 18:13:34 +0100 (MET)
Date: Wed, 10 Feb 1999 18:13:33 +0100
From: Eivind Eklund <eivind@FreeBSD.ORG>
To: Mike Tancsa <mike@sentex.net>
Cc: security@FreeBSD.ORG
Subject: Re: ftp vulnerability ?
Message-ID: <19990210181333.R96008@bitbox.follo.net>
References: <4.1.19990209235845.04d42c80@granite.sentex.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.95.1i
In-Reply-To: <4.1.19990209235845.04d42c80@granite.sentex.ca>; from Mike Tancsa on Wed, Feb 10, 1999 at 12:02:29AM -0500
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, Feb 10, 1999 at 12:02:29AM -0500, Mike Tancsa wrote:
> 
> http://www.netect.com/advisory_0209.html does not explicitly exclude the
> ftp daemon that ships with FreeBSD.  Do you know if it is vulnerable or not ?

Not vulnerable according to my reading of the code.  (I have somewhat
more details of the relevant vulnerabilities than is in the official
advisory).

Eivind.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message