Project

General

Profile

Bug #10365

Investigate if Nautilus / Tor Browser are vulnerable to FTP IP address leaks

Added by hybridwipe about 4 years ago. Updated almost 2 years ago.

Status:
Confirmed
Priority:
Normal
Assignee:
Category:
-
Target version:
-
Start date:
10/13/2015
Due date:
% Done:

0%

Feature Branch:
Type of work:
Security Audit
Blueprint:
Starter:
Affected tool:

Description

See #10364 for some background.

wget had a bug that could expose the user's IP address when using FTP in some situations. This ticket is to investigate if Nautilus and/or Tor Browser have that vulnerability.


Related issues

Copied from Tails - Bug #10364: wget may expose user IP address with FTP protocol (CVE-2015-7665) Resolved 10/13/2015

History

#1 Updated by hybridwipe about 4 years ago

  • Copied from Bug #10364: wget may expose user IP address with FTP protocol (CVE-2015-7665) added

#2 Updated by intrigeri almost 4 years ago

hybridwipe, are you interested in checking this?

#3 Updated by intrigeri almost 4 years ago

  • Status changed from New to Confirmed
  • Type of work changed from Research to Security Audit

#4 Updated by hybridwipe almost 4 years ago

  • Assignee set to hybridwipe

I had some trouble setting up an externally visible FTP server a while back, but since it seems no one else is interested, I'll take another look at it.

#5 Updated by intrigeri almost 4 years ago

I'll take another look at it.

Thanks!

#6 Updated by u almost 2 years ago

@hybridwipe: are you still interested in doing this?

Also available in: Atom PDF