Описание
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
Отчет
This issue was fixed in the following products:
- Red Hat Linux 5.2 - RHSA-2000:039 (2000-06-23)
- Red Hat Linux 6.2 - RHSA-2000:039 (2000-06-23)
Ссылки на источники
Дополнительная информация
https://bugzilla.redhat.com/show_bug.cgi?id=1616495security flaw
EPSS
Процентиль: 100%
0.91378
Критический
Связанные уязвимости
nvd
почти 25 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
github
около 3 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
EPSS
Процентиль: 100%
0.91378
Критический