Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1332

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1332
Last Modified 07 Mar 2011 09:16:55
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1332

Summary

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request.

Vulnerable Systems

Operating System

  • Hp Sis

  • Hp Vvos 10.24

  • Hp Vvos 11.04

  • Hp-ux 10.01

  • Hp-ux 10.10

  • Hp-ux 10.20

  • Hp-ux 10.24

  • Hp-ux 11.00

  • Hp-ux 11.11

  • Hp-ux 11.11i

  • Hp-ux 11.22

  • Hp-ux 11.23

  • Hp-ux 11.4

  • Hp-ux Series 700 10.20

  • Hp-ux Series 800 10.20


References

CERT-VN - VU#647438

BID - 12077

SECUNIA - 13608

HP - SSRT4883

XF - hp-ftpd-bo(18636)

IDEFENSE - 20041221 Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability

SECTRACK - 1012650

HP - HPSBUX01118


Last Updated: 27 May 2016 10:39:00