CVE Vulnerabilities

CVE-1999-0097

Published: Oct 29, 1997 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

Affected Software

Name Vendor Start Version End Version
Hp-ux Hp 9.00 9.00
Hp-ux Hp 9.01 9.01
Hp-ux Hp 9.03 9.03
Hp-ux Hp 9.04 9.04
Hp-ux Hp 9.05 9.05
Hp-ux Hp 9.06 9.06
Hp-ux Hp 9.07 9.07
Hp-ux Hp 9.08 9.08
Hp-ux Hp 9.09 9.09
Hp-ux Hp 9.10 9.10
Hp-ux Hp 10.00 10.00
Hp-ux Hp 10.10 10.10
Hp-ux Hp 10.16 10.16
Hp-ux Hp 10.20 10.20
Hp-ux Hp 10.24 10.24
Hp-ux Hp 11.00 11.00
Aix Ibm 3.2 3.2
Aix Ibm 3.2.4 3.2.4
Aix Ibm 3.2.5 3.2.5
Aix Ibm 4.1 4.1
Aix Ibm 4.1.1 4.1.1
Aix Ibm 4.1.2 4.1.2
Aix Ibm 4.1.3 4.1.3
Aix Ibm 4.1.4 4.1.4
Aix Ibm 4.1.5 4.1.5
Aix Ibm 4.2 4.2
Aix Ibm 4.2.1 4.2.1
Solaris Sun 2.4 2.4
Solaris Sun 2.5 2.5
Solaris Sun 2.5.1 2.5.1
Solaris Sun 2.5.1 2.5.1
Solaris Sun 2.6 2.6
Sunos Sun - -
Sunos Sun 4.1.3c 4.1.3c
Sunos Sun 4.1.3u1 4.1.3u1
Sunos Sun 4.1.4 4.1.4
Sunos Sun 5.3 5.3
Sunos Sun 5.4 5.4
Sunos Sun 5.5 5.5
Sunos Sun 5.5.1 5.5.1

References