123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Computers >> View Article

Open-source Ftp Application Compromised. Information Security Experts Analyze The Vulnerability

Profile Picture
By Author: Contact Press
Total Articles: 7
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Over the recent years, IT security has become the buzz word. The rising threat profile in the cyberspace has made it inevitable for software developers and vendors of security products to place greater emphasis on security. Hackers are waiting to explore all forms of vulnerabilities. The recent acquisition of security solutions firm - McAfee by Intel indicates the imminent challenges involved for software developers.

Of late, Websites have been one of the prime targets for hacking attacks. Breach of a webpage, may result in unauthorized access to the associated databases. Therefore, it is important to have secured underlying server software. Recently, information security professionals reported breach of ProFTPD, File Transfer Protocol (FTP) server software. Hackers exploited an existing unpatched weakness in the FTP application to gain access to the ProFTPD's main distribution server. On gaining access to the main server, the intruders inserted a backdoor in place of the source files. The attack affects the ...
... latest version 1.3.3c and associated mirror servers. The source code of ProFTPD is free available and can be altered by anyone with malicious intentions. Usually, organizations use ethical hacking to identify the weaknesses for taking corrective measures. In this case, unknown hackers exploited an unpatched vulnerability on the affected system.

Incidentally, the intrusion follows a recent attack on another free software repository by hackers. ProFTPD is used by websites of many organizations including Harvard Law School, abebooks.com, SourceForge, Frontier Internet, Daresbury Laboratory and Linksys among others. Information Security researchers behind ProFTPD project have warned clients, who have downloaded the recent version of the software to check for security compromises. The backdoors allows attackers to gain remote access to the root access of the compromised system. However, the researchers have confirmed that source code embedded in the CVS, which examines the alterations in files, remains unaffected.

Users who have downloaded the compromised ProFTPD version may protect their systems from further compromise by installing an unaffected version of the software. The ProFTPD website lists the PGP signatures to enable sites driven by ProFTPD software to verify whether the source files installed by them are compromised.

Contact Press
EC-Council
iclass@eccouncil.org

Total Views: 74Word Count: 354See All articles From Author

Add Comment

Computers Articles

1. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise Servers
Author: Server Tech Central

2. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp

3. Why Should You Plan Blinkit Onboarding Before Market Expansion And How Can Zane Marketing Help You Grow Faster
Author: Zane Marketing

4. Customer Identity And Access Management (ciam) Market : Strengthening Security And Customer Trust
Author: Umangp

5. How To Start Your Website Redesign Project?
Author: brainbell10

6. Sap Compliance In Manufacturing: Closing The Gaps Grc Leaves Behind
Author: Mansoor Alam

7. Speech Analytics Market : Unlocking Actionable Insights From Customer Conversations
Author: Umangp

8. Data Preparation Tools Market: How Ai And Cloud-based Solutions Are Transforming Modern Data Workflows
Author: Umangp

9. How To Setup And Create Instagram Ads?
Author: brainbell10

10. Why Digital Business Cards Are The Future Of Professional Networking
Author: WhyTap

11. End To End Sataware Product Development Is The Process Of Identifying Market Opportunities To Hire Flutter Developer, Connecting User Needs And Requir
Author: brainbell10

12. Dynamics Nav To Business Central Upgrade Guide
Author: brainbell10

13. Data Governance Framework: Building Trust In The Digital Age
Author: Umangp

14. A Complete Guide To Dynamics 365 Warehouse Management
Author: brainbell10

15. Conversational Ai In Intelligent Contact Centers: Market Outlook And Future Growth To 2028
Author: Umangp

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: