CVE-1999-0997

Published: 1999-12-20

Description

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

Severity

Overall Severity: N/A

CVSS Metrics

Type Score Severity Vector

Affected Products

millenux_gmbh - anonftp

Affected Versions:

university_of_washington - wu-ftpd

Affected Versions:

university_of_washington - wu-ftpd

Affected Versions:

university_of_washington - wu-ftpd

Affected Versions:

redhat - linux

Affected Versions:

redhat - linux

Affected Versions:

redhat - linux

Affected Versions:

References

Neural Processor Active