CVE-2000-0129 - Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cau

CVE-2000-0129

Summary

Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0129

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_95:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_95:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 17-08-2022 - 10:15)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bugtraq	20000204 Local / Remote D.o.S Attack in Serv-U FTP-Server v2.5b for Win9x/WinNT Vulnerability 20000204 Windows Api SHGetPathFromIDList Buffer Overflow
ntbugtraq	20000204 Local / Remote D.o.S Attack in Serv-U FTP-Server v2.5b for Win9x/WinNT Vulnerability 20000204 Windows Api SHGetPathFromIDList Buffer Overflow

Last major update

17-08-2022 - 10:15

Published

04-02-2000 - 05:00

Last modified

17-08-2022 - 10:15