ALL >> Computers >> View Article
Open-source Ftp Application Compromised. Information Security Experts Analyze The Vulnerability
Over the recent years, IT security has become the buzz word. The rising threat profile in the cyberspace has made it inevitable for software developers and vendors of security products to place greater emphasis on security. Hackers are waiting to explore all forms of vulnerabilities. The recent acquisition of security solutions firm - McAfee by Intel indicates the imminent challenges involved for software developers.
Of late, Websites have been one of the prime targets for hacking attacks. Breach of a webpage, may result in unauthorized access to the associated databases. Therefore, it is important to have secured underlying server software. Recently, information security professionals reported breach of ProFTPD, File Transfer Protocol (FTP) server software. Hackers exploited an existing unpatched weakness in the FTP application to gain access to the ProFTPD's main distribution server. On gaining access to the main server, the intruders inserted a backdoor in place of the source files. The attack affects the ...
... latest version 1.3.3c and associated mirror servers. The source code of ProFTPD is free available and can be altered by anyone with malicious intentions. Usually, organizations use ethical hacking to identify the weaknesses for taking corrective measures. In this case, unknown hackers exploited an unpatched vulnerability on the affected system.
Incidentally, the intrusion follows a recent attack on another free software repository by hackers. ProFTPD is used by websites of many organizations including Harvard Law School, abebooks.com, SourceForge, Frontier Internet, Daresbury Laboratory and Linksys among others. Information Security researchers behind ProFTPD project have warned clients, who have downloaded the recent version of the software to check for security compromises. The backdoors allows attackers to gain remote access to the root access of the compromised system. However, the researchers have confirmed that source code embedded in the CVS, which examines the alterations in files, remains unaffected.
Users who have downloaded the compromised ProFTPD version may protect their systems from further compromise by installing an unaffected version of the software. The ProFTPD website lists the PGP signatures to enable sites driven by ProFTPD software to verify whether the source files installed by them are compromised.
Contact Press
EC-Council
iclass@eccouncil.org
Add Comment
Computers Articles
1. Scrape Out-of-stock Items On Jiomart, Scraping Out-of-stock Product Data From Jiomart, Web Scraping Jiomart Data For Inventory Status,Author: Den Rediant
2. Web Scraping Api For Blinkit, Swiggy Instamart, And Zepto
Author: FoodDataScrape
3. Scrape Top Ordered Food From Deliveroo On Ramadan 2025
Author: i web data scraping
4. Why Are More Uae Companies Outsourcing Recruitment In 2025?
Author: raj jinna
5. Ai Face Recognition Singapore – S$1/month Biometric Access
Author: Jaham2306
6. Gps Tracking Device Singapore – Real‑time Tracking @ S$1/month
Author: Mjaha2306
7. Empowering Businesses With Managed It Services Firms
Author: Trinity Diaz
8. Best Ways To Reach Roadrunner Email Support (phone, Chat, Email & more)
Author: davidcruzz
9. Extract Instacart Product Flavors & Ingredient Insights Data
Author: FoodDataData
10. Leveraging The Wine Product Dataset From Total Wine
Author: i web data scraping
11. Ingredient & Flavors Insights Scraping From Blinkit App
Author: FoodDataScrape
12. Top 10 Seo Companies In Delhi - April 2025
Author: Flexsin
13. Business Advantages Of Using Hyperlocal Pricing Data Intelligence
Author: FoodDataScrape
14. Empowering Businesses With It Service Management Solutions
Author: Trinity Diaz
15. Sales Strategy Through The Vivino Liquor Product Details Dataset
Author: FoodDataScrape