Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.10318
Category:FTP
Title:wu-ftpd buffer overflow
Summary:NOSUMMARY
Description:Description:

It was possible to make the remote FTP server crash
by creating a huge directory structure.
This is usually called the 'wu-ftpd buffer overflow'
even though it affects other FTP servers.

It is very likely that an attacker can use this
flaw to execute arbitrary code on the remote
server. This will give him a shell on your system,
which is not a good thing.

Solution : upgrade your FTP server.
Consider removing directories writable by 'anonymous'.

Risk factor : High

Cross-Ref: BugTraq ID: 113
BugTraq ID: 2242
BugTraq ID: 599
BugTraq ID: 747
Common Vulnerability Exposure (CVE) ID: CVE-1999-0368
Cert/CC Advisory: CA-99.03
Netect Security Advisory: palmetto.ftpd
XForce ISS Database: palmetto-ftpd-bo
Common Vulnerability Exposure (CVE) ID: CVE-1999-0878
AUSCERT Advisory: AA-1999.01
http://www.securityfocus.com/bid/599
Cert/CC Advisory: CA-99-13
COMPAQ Service Security Patch: SSRT0622
RedHat Security Advisories: RHSA1999031_01
XForce ISS Database: wu-ftpd-dir-name
Common Vulnerability Exposure (CVE) ID: CVE-1999-0879
XForce ISS Database: wuftp-message-file-root
Common Vulnerability Exposure (CVE) ID: CVE-1999-0950
http://www.securityfocus.com/bid/747
Bugtraq: 19991027 WFTPD v2.40 FTPServer remotely exploitable buffer overflow vulnerability (Google Search)
XForce ISS Database: wftpd-mkd-bo
CopyrightThis script is Copyright (C) 1999 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.