[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Re: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities
From: michal.bucko@xxxxxxx
Date: 2 Feb 2007 23:54:04 -0000

Steve,

I agree that both: iFTPAddU and iFTPAddH resemble administrator-level controls. 
Moreover, they are administrator-level controls. But, as ZARAZA said, the 
problem still remains. The successful exploitation of the issues might result 
in privilege escalation, therefore I called the aforementioned issues - the 
vulnerabilities. 

kind rgds,
michal "jest" be.

Prev by Date: [ MDKSA-2007:031 ] - Updated kdelibs packages fix KHTML vulnerability
Next by Date: [ MDKSA-2007:032 ] - Updated mpg123 packages fix DoS vulnerability.
Previous by thread: Re[2]: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities
Next by thread: Re: Re[2]: Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities
Index(es):
- Date
- Thread