CVE-2006-5778

EPSS 0.07%

linux-ftpd

發布日:2006/11/7修改日:2026/3/9

也稱為:DSA-1217-1DEBIAN-CVE-2006-5778

描述

ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir before setting the UID, which allows local users to bypass intended access restrictions by redirecting their home directory to a restricted directory.

受影響套件(3)

Debian/linux-ftpdfrom 0, < 0.17-23
Debian/linux-ftpdfrom 0, < 0.17-20sarge2
Debian/linux-ftpdfrom 0, < 0.17-20sarge2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-5778