Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0997

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-1999-0997
Last Modified 05 Sep 2008 04:18:28
Published 20 Dec 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-0997

Summary

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

Vulnerable Systems

Operating System

  • Redhat Linux 5.2

  • Redhat Linux 6.0

  • Redhat Linux 6.1

Application

  • Millenux Gmbh Anonftp 2.8.1

  • University Of Washington Wu-ftpd 2.4.2

  • University Of Washington Wu-ftpd 2.5.0

  • University Of Washington Wu-ftpd 2.6.0


References

DEBIAN - DSA-377


Last Updated: 27 May 2016 10:35:14