CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0911

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile31.46th
PublishedAug 27, 1999
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.

Affected Platforms (CPE)

πŸ“¦
Proftpd Project

Proftpd

= 1.2_pre1
πŸ“¦
Proftpd Project

Proftpd

= 1.2_pre2
πŸ“¦
Proftpd Project

Proftpd

= 1.2_pre3
πŸ“¦
Proftpd Project

Proftpd

= 1.2_pre4
πŸ“¦
Proftpd Project

Proftpd

= 1.2_pre5

References & Advisories

πŸ”— http://www.debian.org/security/1999/19990210
πŸ”— http://www.securityfocus.com/bid/612
πŸ”— http://www.debian.org/security/1999/19990210
πŸ”— http://www.securityfocus.com/bid/612

Related Vulnerabilities

CVE-2006-581510.0

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated,...

CVE-1999-036810.0

Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.

CVE-2003-050010.0

SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote a...

CVE-2010-422110.0

Multiple stack-based buffer overflows in the pr_netio_telnet_gets function in netio.c in ProFTPD before 1.3.3c allow remote attack...