Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

washington university wu-ftpd 2.4 vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2
CVE-1999-0080
Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command.
Washington University Wu-ftpd 2.4
7.5
CVSSv2
CVE-2001-0935
Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.
Washington University Wu-ftpd 2.4Washington University Wu-ftpd 2.6.0Washington University Wu-ftpd 2.6.1
7.5
CVSSv2
CVE-1999-0017
FTP servers can allow an malicious user to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
Gnu Inet 5.01Gnu Inet 6.01Washington University Wu-ftpd 2.4Gnu Inet 6.02Sun Sunos 5.5Ibm Aix 4.3Sco Open Desktop 3.0Sun Sunos 5.3Caldera Openlinux 1.2Sun Sunos 4.1.4Ibm Aix 4.2Netbsd Netbsd 1.2.1Freebsd Freebsd 2.1.7Siemens Reliant UnixNetbsd Netbsd 1.0Sun Sunos 5.4Freebsd Freebsd 1.1Freebsd Freebsd 1.2Freebsd Freebsd 2.1.0Sun Sunos 4.1.3u1Netbsd Netbsd 1.1Netbsd Netbsd 1.2
7.2
CVSSv2
CVE-2004-0148
wu-ftpd 2.6.2 and previous versions, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.
Sgi Propack 2.3Sgi Propack 2.4Washington University Wu-ftpd 2.4.2 Beta18 Vr14Washington University Wu-ftpd 2.4.2 Beta18 Vr15Washington University Wu-ftpd 2.4.2 Beta2Washington University Wu-ftpd 2.4.2 Vr16Washington University Wu-ftpd 2.4.2 Beta18 Vr10Washington University Wu-ftpd 2.4.2 Beta18 Vr11Washington University Wu-ftpd 2.4.2 Beta18 Vr6Washington University Wu-ftpd 2.4.2 Beta18 Vr12Washington University Wu-ftpd 2.4.2 Beta18 Vr13Washington University Wu-ftpd 2.4.2 Beta18 Vr8Washington University Wu-ftpd 2.4.2 Beta18 Vr9Washington University Wu-ftpd 2.6.2Washington University Wu-ftpd 2.4.2 Beta18 Vr7Washington University Wu-ftpd 2.6.0Washington University Wu-ftpd 2.6.1Washington University Wu-ftpd 2.4.1Washington University Wu-ftpd 2.4.2 Beta18Washington University Wu-ftpd 2.4.2 Beta18 Vr4Washington University Wu-ftpd 2.4.2 Beta18 Vr5Washington University Wu-ftpd 2.4.2 Vr17
5
CVSSv2
CVE-1999-1326
wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote malicious users to read arbitrary files.
Washington University Wu-ftpd 2.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook