Debian Security Advisory 5307-1
Debian Linux Security Advisory 5307-1 - ZeddYu Lu discovered that the FTP client of Apache Commons Net, a Java client API for basic Internet
protocols, trusts the host from PASV response by default. A malicious
server can redirect the Commons Net code to use a different host, but the
user has to connect to the malicious server in the first place. This may
lead to leakage of information about services running on the private
network of the client.
https://packetstormsecurity.com/files/170348/dsa-5307-1.txt
Mon, 02 Jan 2023 14:18:50 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com