Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0080

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-1999-0080
Last Modified 09 Sep 2008 08:33:40
Published 30 Nov 1995 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-0080

Summary

Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command.

Vulnerable Systems

Application

  • Washington University Wu-ftpd 2.4



Last Updated: 27 May 2016 10:34:47