Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0997 — Gmbh Anonftp vulnerability

6 documents6 sources

Severity

7.5HIGHNVD

EPSS

3.8%

top 11.85%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Millenux Gmbh Anonftp Redhat Linux University OF Washington Wu-ftpd

Timeline

PublishedDec 20

Latest updateApr 30

Description

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDredhat/linux5.2, 6.0, 6.1+2

▶NVDmillenux_gmbh/anonftp2.8.1

▶NVDuniversity_of_washington/wu-ftpd2.4.2, 2.5.0, 2.6.0+2

🔴Vulnerability Details

GHSA

GHSA-2hff-p384-25wq: wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program↗2022-04-30

▶

CVEList

CVE-1999-0997: wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program↗2000-04-25

▶

💥Exploits & PoCs

Exploit-DB

WU-FTPD 2.4.2/2.5 .0/2.6.0/2.6.1/2.6.2 - FTP Conversion↗1999-12-20

▶

🔍Detection Rules

Suricata

GPL FTP tar parameters↗2010-09-23

▶

📋Vendor Advisories

Red Hat

CVE-1999-0997: wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program↗

▶