CVE-2006-6008

Name of the Vulnerable Software and Affected Versions linux-ftpd version 0.17

Description The issue is related to the ftpd in Linux Netkit, where it does not check the return status of certain seteuid, setgid, and setuid calls. This could allow remote authenticated users to gain privileges if these calls fail due to reasons such as PAM failures or resource limits.

Recommendations For linux-ftpd version 0.17, update to a version that includes a fix for this issue, as the current version does not properly handle the return status of seteuid, setgid, and setuid calls. At the moment, there is no information about a newer version that contains a fix for this vulnerability.