CVE-2001-0421

FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:35

Type Values Removed Values Added
References () http://www.securityfocus.com/archive/1/177200 - () http://www.securityfocus.com/archive/1/177200 -
References () http://www.securityfocus.com/bid/2601 - Exploit, Vendor Advisory () http://www.securityfocus.com/bid/2601 - Exploit, Vendor Advisory

Information

Published : 2001-07-02 04:00

Updated : 2024-11-20 23:35


NVD link : CVE-2001-0421

Mitre link : CVE-2001-0421

CVE.ORG link : CVE-2001-0421


JSON object : View

Products Affected

sun

  • solaris
  • sunos