The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
References
Configurations
History
20 Nov 2024, 23:32
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:29.wu-ftpd.asc.v1.1 - | |
References | () ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02 - | |
References | () ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-009.txt.asc - | |
References | () http://archives.neohapsis.com/archives/bugtraq/2000-06/0244.html - | |
References | () http://archives.neohapsis.com/archives/bugtraq/2000-07/0017.html - | |
References | () http://marc.info/?l=bugtraq&m=96171893218000&w=2 - | |
References | () http://marc.info/?l=bugtraq&m=96179429114160&w=2 - | |
References | () http://marc.info/?l=bugtraq&m=96299933720862&w=2 - | |
References | () http://www.calderasystems.com/support/security/advisories/CSSA-2000-020.0.txt - | |
References | () http://www.cert.org/advisories/CA-2000-13.html - Patch, Third Party Advisory, US Government Resource | |
References | () http://www.redhat.com/support/errata/RHSA-2000-039.html - | |
References | () http://www.securityfocus.com/bid/1387 - | |
References | () http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000623091822.3321.qmail%40fiver.freemessage.com - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/4773 - |
07 Nov 2023, 01:55
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2000-07-07 04:00
Updated : 2024-11-20 23:32
NVD link : CVE-2000-0573
Mitre link : CVE-2000-0573
CVE.ORG link : CVE-2000-0573
JSON object : View
Products Affected
hp
- hp-ux
CWE