A vulnerability has been found in the current versions of wu-ftpd, follow
the links from http://www.wu-ftpd.org/ for details.

Included below is a patch for CAN-2003-0466 to be applied to wu-ftpd 2.6.2.

--- src/realpath.c.orig Mon Aug  4 11:20:19 2003
+++ src/realpath.c      Mon Aug  4 11:23:22 2003
@@ -299,7 +299,7 @@
       rootd = 0;

    if (*wbuf) {
-       if (strlen(resolved) + strlen(wbuf) + rootd + 1 > MAXPATHLEN) {
+       if (strlen(resolved) + strlen(wbuf) + !rootd + 1 > MAXPATHLEN) {
           errno = ENAMETOOLONG;
           goto err1;
       }

You are viewing proxied material from ftp.icm.edu.pl. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.