Bypassing Access Restrictions in wu-ftpd 2.6.2 and Earlier with Restricted-GID Option

Bypassing Access Restrictions in wu-ftpd 2.6.2 and Earlier with Restricted-GID Option

CVE-2004-0148 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.

Learn more about our User Device Pen Test.