CVE Vulnerabilities

CVE-2004-0185

Published: Mar 15, 2004 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a s/key (SKEY) request with a long name.

Affected Software

Name Vendor Start Version End Version
Wu-ftpd Washington_university 2.6.2 (including) 2.6.2 (including)
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 RedHat *
Red Hat Enterprise Linux ES version 2.1 RedHat *
Red Hat Linux Advanced Workstation 2.1 RedHat *
Wu-ftpd Ubuntu dapper *
Wu-ftpd Ubuntu devel *
Wu-ftpd Ubuntu edgy *
Wu-ftpd Ubuntu feisty *

References