Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1326

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-1999-1326
Last Modified 05 Sep 2008 04:19:15
Published 04 Jul 1997 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1326

Summary

wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files.

Vulnerable Systems

Application

  • Washington University Wu-ftpd 2.4


References

BUGTRAQ - 19970105 BoS: serious security bug in wu-ftpd v2.4 -- PATCH

BUGTRAQ - 19970104 serious security bug in wu-ftpd v2.4

XF - wuftpd-abor-gain-privileges(7169)


Last Updated: 27 May 2016 10:35:22