ID CVE-1999-0081
Summary wu-ftp allows files to be overwritten via the rnfr command.
References
Vulnerable Configurations
  • cpe:2.3:a:washington_university:wu-ftpd
    cpe:2.3:a:washington_university:wu-ftpd
CVSS
Base: 5.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
nessus via4
NASL family FTP
NASL id WU_FTPD_RNFR_FILE_OVERWRITE.NASL
description The remote WU-FTPD server seems to be vulnerable to a remote flaw. This version contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formatted rnfr command. This flaw will allow a remote attacker to overwrite any file on the system. *** Nessus solely relied on the banner of the remote server *** to issue this warning, so it may be a false positive.
last seen 2019-02-21
modified 2018-08-15
plugin id 14302
published 2004-08-17
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=14302
title WU-FTPD rnfr File Overwrite
refmap via4
xf ftp-rnfr
Last major update 09-09-2008 - 08:33
Published 11-01-1997 - 00:00
Back to Top