Date: Mon, 11 Oct 2004 11:26:00 GMT From: winnehr <root@monolit-r.ru> To: freebsd-gnats-submit@FreeBSD.org Subject: misc/72508: Anyone can change root on anonymous ftp Message-ID: <200410111126.i9BBQ0EI061528@www.freebsd.org> Resent-Message-ID: <200410111130.i9BBUKh0086108@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 72508
>Category: misc
>Synopsis: Anyone can change root on anonymous ftp
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Mon Oct 11 11:30:20 GMT 2004
>Closed-Date:
>Last-Modified:
>Originator: winnehr
>Release: FreeBSD 5.1-RELEASE
>Organization:
JSoft
>Environment:
FreeBSD server 5.1-RELEASE FreeBSD 5.1-RELEASE #1: Sat Sep 11 00:43:46 VLAST 2004 winnehr@server:/usr/src/sys/i386/compile/new i386
>Description:
Anyone can change root on anonymous ftp
>How-To-Repeat:
* logon anonymously on ftp (standart /usr/libexec/ftpd -l in /etc/inetd.conf)
* upload any dir to it and enter to it (for example with programm setup files)
* move on ftp server this dir to any other location (for example /tmp)
* exit from dir on ftp client and.... you in /tmp dir and can move to other dirs
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200410111126.i9BBQ0EI061528>