Описание
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
Отчет
This issue was fixed in the following products:
- Red Hat Linux 5.2 - RHSA-2000:039 (2000-06-23)
- Red Hat Linux 6.2 - RHSA-2000:039 (2000-06-23)
Дополнительная информация
https://bugzilla.redhat.com/show_bug.cgi?id=1616495security flaw
EPSS
Процентиль: 100%
0.91378
Критический
Связанные уязвимости
nvd
около 25 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
github
больше 3 лет назад
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
EPSS
Процентиль: 100%
0.91378
Критический