CVE-2000-0574

FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary commands.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:openbsd:ftpd:5.51:*:*:*:*:*:*:*
cpe:2.3:a:openbsd:ftpd:5.60:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta1:*:academ:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18:*:academ:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr4:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr5:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr6:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr7:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr8:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr9:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr10:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr11:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr12:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr13:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr14:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_beta18_vr15:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_vr16:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.4.2_vr17:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.5:*:*:*:*:*:*:*
cpe:2.3:a:washington_university:wu-ftpd:2.6:*:*:*:*:*:*:*

History

20 Nov 2024, 23:32

Type Values Removed Values Added
References () ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-009.txt.asc - () ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-009.txt.asc -
References () http://archives.neohapsis.com/archives/bugtraq/2000-07/0031.html - () http://archives.neohapsis.com/archives/bugtraq/2000-07/0031.html -
References () http://archives.neohapsis.com/archives/bugtraq/2000-07/0061.html - () http://archives.neohapsis.com/archives/bugtraq/2000-07/0061.html -
References () http://archives.neohapsis.com/archives/bugtraq/2000-07/0121.html - () http://archives.neohapsis.com/archives/bugtraq/2000-07/0121.html -
References () http://www.cert.org/advisories/CA-2000-13.html - Patch, Third Party Advisory, US Government Resource () http://www.cert.org/advisories/CA-2000-13.html - Patch, Third Party Advisory, US Government Resource
References () http://www.securityfocus.com/bid/1425 - () http://www.securityfocus.com/bid/1425 -
References () http://www.securityfocus.com/bid/1438 - () http://www.securityfocus.com/bid/1438 -

Information

Published : 2000-07-07 04:00

Updated : 2024-11-20 23:32


NVD link : CVE-2000-0574

Mitre link : CVE-2000-0574

CVE.ORG link : CVE-2000-0574


JSON object : View

Products Affected

openbsd

  • ftpd

washington_university

  • wu-ftpd