Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0936

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0936
Last Modified 05 Sep 2008 04:25:16
Published 30 Nov 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0936

Summary

Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request.

Vulnerable Systems

Application

  • Frox 0.6.0

  • Frox 0.6.1

  • Frox 0.6.2

  • Frox 0.6.3

  • Frox 0.6.4

  • Frox 0.6.5

  • Frox 0.6.6


References

XF - frox-ftp-proxy-bo(7632)

BID - 3606

BUGTRAQ - 20011130 Alert: Vulnerability in frox transparent ftp proxy.

CONFIRM - http://frox.sourceforge.net/security.txt


Last Updated: 27 May 2016 10:36:27