CVE-2006-5778

ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir before setting the UID, which allows local users to bypass intended access restrictions by redirecting their home directory to a restricted directory.

Date published : 2006-11-07

http://www.securityfocus.com/bid/21000

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=384454