Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: WFTPD Patch available, Dell Open Manager vulnerability SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
WFTPD Patch available, Dell Open Manager vulnerability

Texas Imperial Software has made the patch available for the WFTPD vulnerability.

For unregistered users , the link is .

For registered users, you should use the same web site, along with the

user name and password that was emailed to you last September for the

or emailed to you with the software when you purchased it.

Dell Open Manager Vulnerability

A critical security hole in Dell OpenManage server could leave the

product open to attack by an unauthorized user.

The vulnerability is due to a boundary error in the Web server when

handling certain HTTP POST requests. POST is an extremely common HTML

method of processing forms but can be exploited by sending a message with
a hidden but extremely long variable to cause a heap overflow.

Deb Hale


279 Posts
ISC Handler
Mar 3rd 2004

Sign Up for Free or Log In to start participating in the conversation!