Vulnerability Details CVE-2000-0573
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.914
EPSS Ranking 99.6%
CVSS Severity
CVSS v2 Score 10.0
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:29.wu-ftpd.asc.v1.1
- ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-009.txt.asc
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0244.html
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0017.html
- http://marc.info/?l=bugtraq&m=96171893218000&w=2
- http://marc.info/?l=bugtraq&m=96179429114160&w=2
- http://marc.info/?l=bugtraq&m=96299933720862&w=2
- http://www.calderasystems.com/support/security/advisories/CSSA-2000-020.0.txt
- http://www.cert.org/advisories/CA-2000-13.html
- http://www.redhat.com/support/errata/RHSA-2000-039.html
- http://www.securityfocus.com/bid/1387
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000623091822.3321.qmail%40fiver.freemessage.com
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4773
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:29.wu-ftpd.asc.v1.1
- ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-009.txt.asc
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0244.html
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0017.html
- http://marc.info/?l=bugtraq&m=96171893218000&w=2
- http://marc.info/?l=bugtraq&m=96179429114160&w=2
- http://marc.info/?l=bugtraq&m=96299933720862&w=2
- http://www.calderasystems.com/support/security/advisories/CSSA-2000-020.0.txt
- http://www.cert.org/advisories/CA-2000-13.html
- http://www.redhat.com/support/errata/RHSA-2000-039.html
- http://www.securityfocus.com/bid/1387
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000623091822.3321.qmail%40fiver.freemessage.com
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4773