Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0794

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2004-0794
Last Modified 10 Sep 2008 03:27:47
Published 20 Oct 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-0794

Summary

Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code.

Vulnerable Systems

Application

  • Luke Mewburn Lukemftp 1.1

  • Luke Mewburn Lukemftp 1.5

  • Luke Mewburn Tnftpd 2003-12-17


References

NETBSD - NetBSD-SA2004-009

XF - tnftpd-gain-access(17020)

CONFIRM - http://www.vuxml.org/freebsd/c4b025bb-f05d-11d8-9837-000c41e2cdad.html

DEBIAN - DSA-551

FULLDISC - 20040817 Multiple remote vulnerabilities in lukemftpd aka. tnftpd


Last Updated: 27 May 2016 10:38:46