CyberSec.Space Logo
CVEブラウザに戻る

CVE-2003-0041

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1110%
EPSS Percentile4.17th
Published2003年2月19日
Last Modified2026年4月16日

Vulnerability Description

Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client.

Affected Platforms (CPE)

📦
Mit

Kerberos Ftp Client

All versions
💻
Redhat

Linux

= 6.2
💻
Redhat

Linux

= 7.0
💻
Redhat

Linux

= 7.1
💻
Redhat

Linux

= 7.2
💻
Redhat

Linux

= 7.3
💻
Redhat

Linux

= 8.0
📦
Mandrakesoft

Mandrake Multi Network Firewall

= 8.2
💻
Mandrakesoft

Mandrake Linux

= 8.1
💻
Mandrakesoft

Mandrake Linux

= 8.2
💻
Mandrakesoft

Mandrake Linux

= 9.0

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0047.html
🔗 http://secunia.com/advisories/7979
🔗 http://secunia.com/advisories/8114
🔗 http://www.mandriva.com/security/advisories?name=MDKSA-2003:021
🔗 http://www.redhat.com/support/errata/RHSA-2003-020.html
🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0047.html
🔗 http://secunia.com/advisories/7979
🔗 http://secunia.com/advisories/8114

関連する脆弱性情報

CVE-2002-06007.5

Heap overflow in the KTH Kerberos 4 FTP client 4-1.1.1 allows remote malicious servers to execute arbitrary code on the client via...

CVE-2003-009510.0

Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary cod...

CVE-2003-009810.0

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly...

CVE-2003-003310.0

Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via...