1778781 – (CVE-2011-2523) CVE-2011-2523 vsftpd: backdoor which opens a shell on port 6200/tcp

Bug 1778781 (CVE-2011-2523) - CVE-2011-2523 vsftpd: backdoor which opens a shell on port 6200/tcp

Summary: CVE-2011-2523 vsftpd: backdoor which opens a shell on port 6200/tcp

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2011-2523
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1778782
TreeView+	depends on / blocked

Reported:	2019-12-02 13:45 UTC by Guilherme de Almeida Suckevicz
Modified:	2021-11-12 20:05 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2019-12-02 15:51:52 UTC
Embargoed:

Attachments	(Terms of Use)

Description Guilherme de Almeida Suckevicz 2019-12-02 13:45:41 UTC

vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.

Reference:
https://vigilance.fr/vulnerability/vsftpd-backdoor-in-version-2-3-4-10805
https://packetstormsecurity.com/files/102745/VSFTPD-2.3.4-Backdoor-Command-Execution.html

Comment 1 Tomas Hoger 2019-12-02 15:51:52 UTC

vsftpd 2.3.4 was not included in any Red Hat Enterprise Linux version.  The backdoor was not found in the vsftpd versions that are shipped with Red Hat Enterprise Linux 5, 6, 7, or 8.

Note You need to log in before you can comment on or make changes to this bug.