CNET News.com: Software flaw threatens Linux servers
Nov 29, 2001, 07:39 (33 Talkback[s])
"A vulnerability in the most widely used FTP server
program for Linux has left numerous sites open to online attackers,
a situation worsened when Red Hat mistakenly released information
on the flaw early, leaving other Linux companies scrambling to get
a fix out.
"Other vendors didn't have a patch," said Alfred Huger, vice
president of engineering for network security information provider
SecurityFocus . The company has been working with vendors to fix
the vulnerability after computer security company Core Security
Technologies alerted them to the problem Nov. 14.
"The fix is not rocket science," Huger said. "But we weren't
working at a breakneck pace to get a patch out, because everyone
was working together."