Patch-ID# 106523-05 Keywords: security ftp mget mput fork client Synopsis: SunOS 5.6_x86: /usr/bin/ftp patch Date: Feb/18/2003 Install Requirements: None Solaris Release: 2.6_x86 SunOS Release: 5.6_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch: 106522 Topic: SunOS 5.6_x86: /usr/bin/ftp patch Relevant Architectures: i386 BugId's fixed with this patch: 4080226 4112039 4193146 4197316 4621760 Changes incorporated in this version: 4621760 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/bin/ftp Problem Description: 4621760 ftp debug output includes passwords in clear text form (from 106523-04) 4112039 ftp runique option causes mget to fail, incorrect file name generation on get (from 106523-03) 4197316 buffer overflow in ftp (from 106523-02) 4193146 ftp client is too restrictive after fix for 4080226 (from 106523-01) 4080226 security hole in mget (in ftp client) Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- None. README -- Last modified date: Tuesday, February 18, 2003