Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0879

4 documents4 sources
Severity
10.0CRITICAL
EPSS
4.6%
top 10.79%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Bsdi BSD OSCaldera Openlinux
Timeline
PublishedOct 1
Latest updateApr 30

Description

Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDbsdi/bsd_os2.1, 3.0+1

🔴Vulnerability Details

2
GHSA
GHSA-w87h-rw9r-9p4c: Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file2022-04-30
CVEList
CVE-1999-0879: Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file2000-01-04

💥Exploits & PoCs

1
Exploit-DB
Washington University WU-FTPD 2.5.0 - 'message' Remote Buffer Overflow1999-10-19
CVE-1999-0879 (CRITICAL CVSS 10) | Buffer overflow in WU-FTPD and rela | cvebase.io