Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0963HistoryJan 05, 2004 - 5:00 a.m.
CVE-2003-0963
2004-01-0505:00:00
Debian Security Bug Tracker
security-tracker.debian.org
11
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.017
Percentile
88.0%
Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lftp | < 2.6.10-1 | lftp_2.6.10-1_all.deb |
| Debian | 11 | all | lftp | < 2.6.10-1 | lftp_2.6.10-1_all.deb |
| Debian | 999 | all | lftp | < 2.6.10-1 | lftp_2.6.10-1_all.deb |
| Debian | 13 | all | lftp | < 2.6.10-1 | lftp_2.6.10-1_all.deb |
Related
freebsd
freebsd
lftp HTML parsing vulnerability
2003-12-11 00:00:00
openvas
openvas
FreeBSD Ports: lftp
2008-09-04 00:00:00
FreeBSD Ports: lftp
2008-09-04 00:00:00
Debian: Security Advisory (DSA-406)
2008-01-17 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : lftp (MDKSA-2003:116)
2004-07-31 00:00:00
Debian DSA-406-1 : lftp - buffer overflow
2004-09-29 00:00:00
FreeBSD : lftp HTML parsing vulnerability (89)
2004-07-06 00:00:00
redhat
redhat
(RHSA-2003:404) lftp security update
2003-12-16 00:00:00
suse
suse
remote system compromise in lftp
2003-12-15 13:35:24
debian
debian
[SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution
2004-01-05 06:50:23
[SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution
2004-01-05 06:50:23
cve
cve
CVE-2003-0963
2004-01-05 05:00:00
osv
osv
lftp - buffer overflow
2004-01-05 00:00:00
exploitdb
exploitdb
lftp 2.6.9 - Remote Stack Overflow
2004-01-14 00:00:00
cvelist
cvelist
CVE-2003-0963
2003-12-17 05:00:00
nvd
nvd
CVE-2003-0963
2004-01-05 05:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.017
Percentile
88.0%
Related for DEBIANCVE:CVE-2003-0963