CVE-2000-0462

CVE-2000-0462

EPSS 0.4%

ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-006.txt.asc http://www.osvdb.org/1366 http://www.securityfocus.com/bid/1273