Check or Attack Name: Ftpd Args Core Dump

An FTP daemon is vulnerable to the PASV (Passive) buffer overflow core dump. This vulnerability can cause some FTP daemons to crash with a core dump when a PASV command is followed by a large amount of data. FTP core dumps can be used to salvage encrypted passwords, bypassing any shadow passwd scheme.

Update your FTP server.

The latest version of wu-ftp is available from ftp://ftp.academ.com/pub/wu-ftpd/ or at http://ftp.academ.com/academ/wu-ftpd/release.html.

Academ Consulting Services, WU-FTP Server Software Release Information, http://ftp.academ.com/academ/wu-ftpd/release.html