New Search

HP-UX wuftpd Privilege Escalation Vulnerability (B.11.11)

oval:org.mitre.oval:def:1147

wu-ftpd 2.6.2 and earlier with the restricted-gid option enabled allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory which causes wu-ftpd to use the root directory instead.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2004-0148
Product(s):
  • ftpd