wuftpd
wu-ftpd source distribution trojaned with backdoor
The source code distribution for the popular wu-ftpd FTP server was modified by an attacker to include a backdoor. This trojaned version was then uploaded to the primary distribution site. The backdoor allowed attackers who knew the trigger mechanism to gain root privileges on systems that compiled and ran the compromised server.
- Date
- 1994-03-28
- Category
- Open Source
- Target Surface
- Distribution
- Insertion Phase
- distribution
- Impact
- Backdoor
- Cause
- Compromised Infrastructure
What Was Affected
Package
wuftpd
LanguageC
ComponentDaemon
Artifact typesource archive
Domain typeproject download host
Domain
ftp.wustl.edu
Compromised Versions
- 2.2
Incident Context
- Motive
- Unauthorized Access/Control
- Attribution
- Individual Hacker
- Observed Duration
- 0 days
Evidence
Compromised Artifacts
Current Artifacts and Analysis
Indicators and Changes
Hashes
md5:3e12b0efb95bcb97e5b58fb916323618
Source Data
Source record: oss/wuftpd/meta.yaml