CVE-2001-0248

Name of the Vulnerable Software and Affected Versions HPUX version 11

Description The issue allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings. This is due to a buffer overflow in the FTP server.

Recommendations For HPUX version 11, consider restricting access to the FTP server until a fix is available. As a temporary workaround, avoid using the STAT command with long pathnames to minimize the risk of exploitation.