CVE Vulnerabilities

CVE-1999-0080

Published: Nov 30, 1995 | Modified: Sep 09, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the site exec command.

Affected Software

Name Vendor Start Version End Version
Wu-ftpd Washington_university 2.4 2.4

References