Re: [cobalt-security] wu-ftpd vulnerabilities

["Florian Effenberger" <florian.effenberger@xxxxxxxxxxxxx>]

Interested in that, too ! ;-)

----- Original Message -----
From: "Jose Luis Aguilar" <jlaguilar@xxxxxxx>
To: "Cobalt-Developers" <cobalt-developers@xxxxxxxxxxxxxxx>
Cc: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Tuesday, August 22, 2000 9:34 PM
Subject: RE: [cobalt-security] wu-ftpd vulnerabilities


Jeff,

What is this package that is hidden in the update page (between
<!-- -->
marks) ?

RaQ3-All-System-3.0.1-6453.pkg
This package addresses a security issue whereby a malicious user with
shell
access could use the vacation message field to compromise the system.

Is this bug still active? or did Cobalt take care of it in another
update
package?

JLA


-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Chris Adams
Sent: Tuesday, August 22, 2000 3:01 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] wu-ftpd vulnerabilities


Once upon a time, Jeff Lovell <jlovell@xxxxxxxxxx> said:
> Make sure you check the webpage on a regular basis..

What happened to announcing packages on the cobalt-announce list?  I
haven't been checking the web page regularly since the -announce list
was setup.  Now that I check it, I see that there are several updates
that I haven't applied, and checking the announce list archive, there
was not an announcement about them.
--
Chris Adams <cmadams@xxxxxxxxxx>
Systems and Network Administrator - HiWAAY Information Services
I don't speak for anybody but myself - that's enough trouble.

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security


_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security