PT-1996-1062 · Freebsd · Freebsd+1

Publicado

1996-07-16

Atualizado

2008-09-05

CVE-1999-1301

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 2.1.5 rzsz module in FreeBSD versions prior to 2.1.5

Description A design flaw in the Z-Modem protocol allows a remote sender of a file to execute arbitrary programs on the client. This issue is related to the implementation in rz in the rzsz module.

Recommendations For FreeBSD versions prior to 2.1.5, update to version 2.1.5 or later to resolve the issue. For the rzsz module in FreeBSD versions prior to 2.1.5, update the module to a version included in FreeBSD 2.1.5 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-1999-1301

Produtos afetados

Freebsd

Rzsz

PT-1996-1062 · Freebsd · Freebsd+1

CVE-1999-1301

Identificadores relacionados

Produtos afetados

Referências · 4