Date: Mon, 23 Apr 2001 11:16:32 +0800 From: Victor Sudakov <sudakov@sibptus.tomsk.ru> To: freebsd-security@freebsd.org Subject: Q: Impact of globbing vulnerability in ftpd Message-ID: <20010423111632.B17342@sibptus.tomsk.ru>
next in thread | raw e-mail | index | archive | help
Colleagues: I do not quite understand the impact of the globbing vulnerability. As far as I understand, it can be exploited only after a user has logged in, so ftpd is already chrooted and running with the uid of the user at the moment. What serious trouble can an attacker cause under these conditions? Thank you for any input. -- Victor Sudakov, VAS4-RIPE, VAS47-RIPN 2:5005/149@fidonet http://vas.tomsk.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010423111632.B17342>