CVE-2003-0466 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2003-0466
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0466

Description: Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/12785 VULNWATCH http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0065.html TURBO http://www.turbolinux.com/security/TLSA-2003-46.txt SUSE http://www.novell.com/linux/security/advisories/2003_032_wuftpd.html ST 1007380 SCO SAID Secunia Advisory: SA9535 Secunia Advisory: SA9447 Secunia Advisory: SA9446 Secunia Advisory: SA9423 REDHAT http://www.redhat.com/support/errata/RHSA-2003-245.html http://www.redhat.com/support/errata/RHSA-2003-246.html OVAL http://oval.mitre.org/oval/definitions/data/oval1970.html OSVDB 6602 NETBSD MISC http://isec.pl/vulnerabilities/isec-0011-wu-ftpd.txt MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:080 IMMUNIX http://download.immunix.org/ImmunixOS/7+/Updates/errata/IMNX-2003-7+-019-01 HP FREEBSD http://marc.theaimsgroup.com/?l=bugtraq&m=106001410028809&w=2 DEBIAN http://www.debian.org/security/2003/dsa-357 CERT-VN 743092 BUGTRAQ http://www.securityfocus.com/archive/1/424852/100/0/threaded http://www.securityfocus.com/archive/1/425061/100/0/threaded http://marc.theaimsgroup.com/?l=bugtraq&m=106001702232325&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=106002488209129&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=105967301604815&w=2 BID 8315

Return to the previous page.