4 matches found
Mandrake Linux Security Advisory : krb5 (MDKSA-2003:021)
A vulnerability was discovered in the Kerberos FTP client. When the client retrieves a file that has a filename beginning with a pipe character, the FTP client will pass that filename to the command shell in a system call. This could allow a malicious remote FTP server to write to files outside o...
CVE-2003-0041
Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe | character in a filename that is retrieved by the client...
CVE-2003-0041
Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe | character in a filename that is retrieved by the client...
Moderate: Red Hat Security Advisory: krb5 security update
Updated packages fix a vulnerability found in the Kerberos FTP client distributed with the Red Hat Linux Advanced Server krb5 packages. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1. For Advanced Workstation 2.1 these packages also fix CAN-2002-1235 as described in...