A security issue has been reported in ProFTPD, which can be exploited by malicious people to compromise a vulnerable system.
The security issue is caused due to the distribution of compromised ProFTPD 1.3.3c source code packages via the project's main FTP server and all of the mirror servers, which contain a backdoor allowing remote root access.
The compromised files were distributed from November 28th 2010 to December 2nd 2010 and on November 16th 2010 between 08:00 UTC and 13:00 UTC.
Solution: Check and validate your copy of the source code.
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org