Sign up for the Security newsletter

Hackers exploit weak link FTP

Security experts have warned that hackers may be exploiting file transfer protocol (FTP) as a way in to company systems.

By Chris Holbrook on 11 April 2001 11:40

NEWS The primary method of file transfer across the internet may also be providing a fast track past online security measures. The vulnerability lies in the way FTP servers match the special file name patterns relying on a function called 'glob()' when exchanging files. In its simplistic form the way in which some servers expand these file names creates buffer overflows that could permit an attacker to introduce their own code, with the power to potentially take over a system - enabling web defacement, network intrusions and data theft. Network Associates subsidiary PGP Security has rung the alarm bells as it claims more than 90 per cent of organisations use FTP servers. Further information is available at the PGP website: http://www.pgp.com .

Post your comment

In order to post a comment you need to be registered and logged in.

You can also log in with Facebook. Log in or create your silicon.com account below

  • Login

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy.

Questions about membership? Find the answers in the Membership FAQ

Get silicon.com's daily newsletter

  • Register on silicon.com

    Enter your email to register

Keep in touch with silicon.com

silicon.com newsletters