Wu-ftpd@2.4 Security Vulnerabilities and Issues — Wu-ftpd@2.4 CVE List

Lucene search

Washington UniversityWu-ftpd2.4

4 matches found

CVE•added 1999/09/29 4:0 a.m.•200 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

7.5CVSS6.3AI score0.01136EPSS

CVE•added 1999/09/29 4:0 a.m.•54 views

CVE-1999-0080

Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command.

10CVSS6.8AI score0.01463EPSS

CVE•added 2002/02/02 5:0 a.m.•50 views

CVE-2001-0935

Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.

7.5CVSS6.5AI score0.73511EPSS

CVE•added 2002/03/09 5:0 a.m.•33 views

CVE-1999-1326

wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files.

5CVSS6.9AI score0.00919EPSS