Описание
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
Ссылки
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.91378
Критический
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
почти 25 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
github
около 3 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
EPSS
Процентиль: 100%
0.91378
Критический
10 Critical
CVSS2
Дефекты
NVD-CWE-Other