Описание
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
Ссылки
- PatchThird Party AdvisoryUS Government Resource
- Broken Link
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchThird Party AdvisoryUS Government Resource
- Broken Link
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 6.5 (включая) до 6.5.20 (включая)
Одно из
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:8:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04703
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-131
Связанные уязвимости
CVSS3: 9.8
github
почти 4 года назад
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
EPSS
Процентиль: 89%
0.04703
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-131