WU-FTPD Heap Corruption Vulnerability

This paper presents a vulnerability profile - specifically an oversight in design, whereby a remote user with any valid FTP login is able to execute arbitrary code with the privileges of the FTP daemon - usually root.

By

Jennifer Allen

December 10, 2001

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Why SANS - Blog - Zero Trust - Building a Zero Trust Framework- Key Strategies for 2024 and Beyond_340 x 340(1).jpg

Cybersecurity Insights

Building a Zero Trust Framework: Key Strategies for 2024 and Beyond

Zero Trust is not just a set of security tools but a foundational shift away from legacy security concepts focused on perimeter-based controls.

GIAC Certifications

Why SANS - Blog - WFS Case Studies - Black Rainbow_340 x 340.jpg

Cybersecurity Insights

Strategies for Training and Hiring in the US Government: A Black Rainbow Case Study

Despite hiring challenges, continuous education and adaptive training programs are key to developing a robust cybersecurity workforce.

GIAC Certifications

Why SANS - Blog - WFS Case Studies - Mastercard_340 x 340.jpg

Cybersecurity Insights

Lessons Learned on the Impact of Training on Hiring Success: A Mastercard Use Case

Jon Brickey shares his approach to fortifying Mastercard’s cybersecurity capabilities through diverse and comprehensive training initiatives.

GIAC Certifications