CVE-2000-0462

Name of the Vulnerable Software and Affected Versions NetBSD version 1.4.2

Description The issue concerns the ftpd in NetBSD, which fails to properly parse entries in /etc/ftpchroot. As a result, it does not chroot the specified users, allowing them to access files outside of their home directory.

Recommendations For NetBSD version 1.4.2, consider updating the /etc/ftpchroot configuration to properly restrict user access until a patch is available. As a temporary workaround, restrict access to sensitive files and directories to minimize the risk of exploitation.