---

Home Security

Flaw in libc implementation threatens FTP servers

By

“A flaw in the implementation of the glob() function in various
C libraries (libc) can be exploited to remotely cripple FTP
servers. As many FTP servers allow anonymous log-ins, and the flaw
is said to be easy to exploit, many servers are at risk of falling
victim to the attack. A report by security specialist Maksymilian
Arciemowicz says that even large FTP servers such as those run by
Adobe and HP are affected.

“The problem exists because GLOB_LIMIT, a feature added in 2001
to limit the amount of memory used by the glob() function is
ineffective.”


Complete Story

Complete Story
Previous article
Next article

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.