[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    Re: Gene6 FTP Server Local Privilege Escalation Vulnerability
From:       Matthieu <gene6 () gene6 ! com>
Date:       2005-03-08 3:18:47
Message-ID: 20050308031847.30739.qmail () www ! securityfocus ! com
[Download RAW message or body]

In-Reply-To: <5ed07f7a05030708092d774ef8@mail.gmail.com>

> (4) Vendor Reply
> 
> Reply from the support@G6FtpServer.com
[..]

Here is a copy of our first reply with the solution :

- create a new administrator account
- in Administration / Properties, uncheck Options / Allow all access to localhost.

Do not forget to adjust the "local machine" properties to use the new administration \
account.

-

The installer will be updated to ask for an administrator account in the next \
version.

Until then, if needed, the administrators can apply the solution above if running in \
a multi-users environment.

Matthieu


[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic