CVE-2001-1501

Опубликовано: 31 дек. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple (1) "/..", (2) "/.", or (3) "../*?/" sequences in the argument.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:proftpd_project:proftpd:1.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08154

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2001-1501

debian

больше 23 лет назад

The glob functionality in ProFTPD 1.2.1, and possibly other versions a ...

GHSA-8826-pg9p-3pqq

github

около 3 лет назад

The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple (1) "*/..", (2) "*/.*", or (3) ".*./*?/" sequences in the argument.