Fix | Vsftpd 208 Exploit Github

Because this was a supply-chain attack on the source code, the primary "fix" is to ensure you are not running the compromised 2.3.4 version. 1. Upgrade Immediately

The exploit targets a backdoor that was into the vsftpd 2.0.8 source code between June 30, 2011, and July 1, 2011, when the author’s personal server was compromised. The malicious code allowed remote attackers to open a shell on port 6200 when a username containing :) was sent. vsftpd 208 exploit github fix