Lucene search

[email protected]CVE-2004-0185

HistoryMar 15, 2004 - 5:00 a.m.

CVE-2004-0185

2004-03-1505:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

buffer overflow

wu-ftpd

denial of service

remote attackers

cve-2004-0185

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.075 Low

EPSS

Percentile

94.0%

JSON

Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a s/key (SKEY) request with a long name.

CPENameOperatorVersion
washington_university:wu-ftpdwashington university wu-ftpdeq2.6.2

CPE	Name	Operator	Version
washington_university:wu-ftpd	washington university wu-ftpd	eq	2.6.2

References

ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_2.6.2/skeychallenge.patch

unixpunx.org/txt/exploits_archive/packetstorm/0310-advisories/wuftpd-skey.txt

www.debian.org/security/2004/dsa-457

www.redhat.com/support/errata/RHSA-2004-096.html

www.securiteam.com/unixfocus/6X00Q1P8KC.html

www.securityfocus.com/bid/8893

exchange.xforce.ibmcloud.com/vulnerabilities/13518

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.075 Low

EPSS

Percentile

94.0%

JSON

Related for CVE-2004-0185

ubuntucve1 nessus3 openvas4 securityvulns1 osv1 debian1 cve1 redhat1