CVE-2011-0988

Publication date 18 April 2011

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

Description

pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running OES Netware extensions, creates a world-writeable directory, which allows local users to overwrite arbitrary files and gain privileges via unspecified vectors.

Read the notes from the security team

Status

Package Ubuntu Release Status
pure-ftpd 10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
8.04 LTS hardy
Not affected
6.06 LTS dapper
Not affected

Notes

kees

SUSE-specific

References

Other references

Access our resources on patching vulnerabilities