PT-1999-1457 · Wu Ftpd+2 · Wu-Ftpd+2

Published

1999-08-27

Updated

2008-09-09

CVE-1999-0911

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ProFTPD (affected versions not specified) wu-ftpd (affected versions not specified) beroftpd (affected versions not specified)

Description A buffer overflow issue allows remote attackers to gain root access. This is achieved by sending a series of MKD and CWD commands that create nested directories.

Recommendations For ProFTPD, update to a version that includes a fix for this issue. For wu-ftpd, update to a version that includes a fix for this issue. For beroftpd, update to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the MKD and CWD commands until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-0911

Affected Products

Proftpd

Beroftpd

Wu-Ftpd

PT-1999-1457 · Wu Ftpd+2 · Wu-Ftpd+2

CVE-1999-0911

Related Identifiers

Affected Products

References · 5