CVEブラウザに戻る

CVE-2003-0466

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0120%

EPSS Percentile43.85th

Published2003年8月27日

Last Modified2026年4月16日

Vulnerability Description

Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.

Affected Platforms (CPE)

📦

Redhat

Wu Ftpd

= 2.6.1-16

📦

Wuftpd

Wu Ftpd

>= 2.5.0 and <= 2.6.2

💻

Apple

Mac Os X

= 10.2.6

💻

Apple

Mac Os X Server

= 10.2.6

💻

Freebsd

Freebsd

>= 4.0 and <= 5.0

💻

Netbsd

Netbsd

>= 1.5 and <= 1.6.1

💻

Openbsd

Openbsd

>= 2.0 and <= 3.3

💻

Sun

Solaris

= 9.0

References & Advisories

🔗 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-011.txt.asc

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0065.html

🔗 http://download.immunix.org/ImmunixOS/7+/Updates/errata/IMNX-2003-7+-019-01

🔗 http://isec.pl/vulnerabilities/isec-0011-wu-ftpd.txt

🔗 http://marc.info/?l=bugtraq&m=105967301604815&w=2

🔗 http://marc.info/?l=bugtraq&m=106001410028809&w=2

🔗 http://marc.info/?l=bugtraq&m=106001702232325&w=2

🔗 http://marc.info/?l=bugtraq&m=106002488209129&w=2

関連する脆弱性情報

CVE-1999-036810.0

Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.

CVE-1999-008210.0

CWD ~root command in ftpd allows root access.

CVE-1999-066110.0

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP...

CVE-1999-087810.0

Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.