From owner-freebsd-security  Mon Apr 16 11:47:50 2001
Delivered-To: freebsd-security@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP id 0BBAA37B43C
	for <security@FreeBSD.ORG>; Mon, 16 Apr 2001 11:47:47 -0700 (PDT)
	(envelope-from Cy.Schubert@uumail.gov.bc.ca)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id LAA30884;
	Mon, 16 Apr 2001 11:47:14 -0700
Received: from passer.osg.gov.bc.ca(142.32.110.29)
 via SMTP by point.osg.gov.bc.ca, id smtpda30882; Mon Apr 16 11:47:03 2001
Received: (from uucp@localhost)
	by passer.osg.gov.bc.ca (8.11.2/8.9.1) id f3GIkwY05897;
	Mon, 16 Apr 2001 11:46:58 -0700 (PDT)
Received: from cwsys9.cwsent.com(10.2.2.1), claiming to be "cwsys.cwsent.com"
 via SMTP by passer9.cwsent.com, id smtpdSO5891; Mon Apr 16 11:46:21 2001
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.11.3/8.9.1) id f3GIkL206263;
	Mon, 16 Apr 2001 11:46:21 -0700 (PDT)
Message-Id: <200104161846.f3GIkL206263@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdmK6257; Mon Apr 16 11:45:29 2001
X-Mailer: exmh version 2.3.1 01/18/2001 with nmh-1.0.4
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-Sender: schubert
To: Igor Roshchin <str@giganda.komkon.org>
Cc: security@FreeBSD.ORG
Subject: Re: Wu-ftpd and Remote BSD ftpd glob exploit 
In-reply-to: Your message of "Mon, 16 Apr 2001 11:16:06 EDT."
             <200104161516.LAA70850@giganda.komkon.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Mon, 16 Apr 2001 11:45:29 -0700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <200104161516.LAA70850@giganda.komkon.org>, Igor Roshchin 
writes:
> 
> 
> 
> Can anybody, please, tell explicitly, or point me to a posting/URL with an
> answer to the question: 
> "Is Wu-ftpd server [and derived from it] also vulnerable ? "
> 
> So far I saw neither positive nor negative identification, but
> maybe I missed one.

Any application, local or remote, that uses the FreeBSD glob(3) 
function would have been vulnerable prior to the correction date.


Regards,                         Phone:  (250)387-8437
Cy Schubert                        Fax:  (250)387-5766
Team Leader, Sun/Alpha Team   Internet:  Cy.Schubert@osg.gov.bc.ca
Open Systems Group, ITSD, ISTA
Province of BC



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message