Published: 27/08/1999 Updated: 09/09/2008

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote malicious users to gain root access via a series of MKD and CWD commands that create nested directories.

Vulnerable Product	Search on Vulmon	Subscribe to Product
proftpd project proftpd 1.2_pre3
proftpd project proftpd 1.2_pre4
proftpd project proftpd 1.2_pre5
proftpd project proftpd 1.2_pre1
proftpd project proftpd 1.2_pre2

source: wwwsecurityfocuscom/bid/612/info The vulnerability in 12pre1, 12pre3 and 12pre3 is a remotely exploitable buffer overflow, the result of a sprintf() in the log_xfer() routine in src/logc The vulnerability in 12pre4 is a mkdir overflow The name of the created path can not exceed 255 chars 12pre6 limits the command buffer ...

source: wwwsecurityfocuscom/bid/612/info The vulnerability in 12pre1, 12pre3 and 12pre3 is a remotely exploitable buffer overflow, the result of a sprintf() in the log_xfer() routine in src/logc The vulnerability in 12pre4 is a mkdir overflow The name of the created path can not exceed 255 chars 12pre6 limits the command buffer s ...

NVD-CWE-Other http://www.debian.org/security/1999/19990210 http://www.securityfocus.com/bid/612 https://nvd.nist.gov https://www.exploit-db.com/exploits/19476/

CVE-1999-0911

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect