TCP Wrappers is a security tool that provides access control and logging for Unix-like systems. It was widely used in the 1990s to restrict network access and log system events. However, a vulnerability was discovered, allowing an attacker to replace the legitimate TCP Wrappers package with a Trojan Horse version.
You're affected if you use TCP Wrappers versions 7.6 or earlier.
Check with: grep "tcpwrappers" /etc/passwd (Note: This command is specific to Unix-like systems and may not work on other platforms.)
This is TCP Wrappers, NOT WUFTPD or IRC client, despite the advisory mentioning those as similar products.
Upgrade to TCP Wrappers version 7.6 or later from a trusted source.
- For immediate mitigation: Restrict network access to your system using alternative security measures (e.g., firewall rules).