WU-FTPD is an open-source FTP server software used by some organizations for file transfer. This vulnerability allows remote attackers to gain root privileges via macro variables in a message file, potentially leading to unauthorized access to sensitive data.
You're affected if you use WU-FTPD version 2.17 or earlier. To check if your system is vulnerable, run the command grep -r "WUFTPD_VERSION" /etc/wuftpd/wuftpd.conf on Linux systems or grep -r "WUFTPD_VERSION" %windir%\system32\wuftpd.exe on Windows.
Note: This vulnerability does not affect WU-FTPD versions 2.18 and later, which have been patched.
To fix this vulnerability, upgrade to WU-FTPD version 2.18 or later from the official website: https://sourceforge.net/projects/wuftpd/files/WuFTPD%20v2.18/
Immediate mitigations:
MacroExpansion = no in the /etc/wuftpd/wuftpd.conf file on Linux systems.MacroExpansion = no in the %windir%\system32\wuftpd.exe configuration file.