CVE-2004-0794Race Condition in Mewburn Tnftpd

3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
2.2%
top 15.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Luke Mewburn LukemftpLuke Mewburn Tnftpd
Timeline
PublishedOct 20
Latest updateMay 3

Description

Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

NVDluke_mewburn/tnftpd2003-12-17
NVDluke_mewburn/lukemftp1.1, 1.5+1

Patches

Patch: ftp.netbsd.orgPatch: ftp.netbsd.org

🔴Vulnerability Details

2
GHSA
GHSA-qq7m-chhg-7qf3: Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or2022-05-03
CVEList
CVE-2004-0794: Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or2004-08-19
CVE-2004-0794 — Race Condition in Luke Mewburn Tnftpd | cvebase