Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a s/key (SKEY) request with a long name.
References
Configurations
History
20 Nov 2024, 23:47
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_2.6.2/skeychallenge.patch - Patch | |
References | () http://unixpunx.org/txt/exploits_archive/packetstorm/0310-advisories/wuftpd-skey.txt - URL Repurposed | |
References | () http://www.debian.org/security/2004/dsa-457 - Patch, Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2004-096.html - Patch, Vendor Advisory | |
References | () http://www.securiteam.com/unixfocus/6X00Q1P8KC.html - Exploit, Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/8893 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/13518 - |
14 Feb 2024, 01:17
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://unixpunx.org/txt/exploits_archive/packetstorm/0310-advisories/wuftpd-skey.txt - URL Repurposed |
Information
Published : 2004-03-15 05:00
Updated : 2024-11-20 23:47
NVD link : CVE-2004-0185
Mitre link : CVE-2004-0185
CVE.ORG link : CVE-2004-0185
JSON object : View
Products Affected
washington_university
- wu-ftpd
CWE