ID CVE-2001-0935
Summary Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.
References
Vulnerable Configurations
  • cpe:2.3:a:washington_university:wu-ftpd:2.4
    cpe:2.3:a:washington_university:wu-ftpd:2.4
  • cpe:2.3:a:washington_university:wu-ftpd:2.6.0
    cpe:2.3:a:washington_university:wu-ftpd:2.6.0
  • cpe:2.3:a:washington_university:wu-ftpd:2.6.1
    cpe:2.3:a:washington_university:wu-ftpd:2.6.1
CVSS
Base: 7.5 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family FTP
NASL id WU_FTPD_GLOB.NASL
description The version of WU-FTPD running on the remote host has an unspecified remote vulnerability. This is reportedly due to an unspecified bug in glob.c discovered by the SuSE security team. Nessus verified this vulnerability by looking at the banner of the remote FTP server.
last seen 2019-02-21
modified 2018-08-15
plugin id 11332
published 2003-03-09
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=11332
title WU-FTPD Unspecified Security Issue
refmap via4
suse SuSE-SA:2001:043
statements via4
contributor Joshua Bressers
lastmodified 2006-09-27
organization Red Hat
statement CVE-2001-0935 refers to vulnerabilities found when SUSE did a code audit of the wu-ftpd glob.c file in wu-ftpd 2.6.0. They shared these details with the wu-ftpd upstream authors who clarified that some of the issues did not apply, and all were addressed by the version of glob.c in upstream wu-ftpd 2.6.1. Therefore we believe that the issues labelled as CVE-2001-0935 do not affect wu-ftpd 2.6.1 or later versions and therefore do not affect Red Hat Enterprise Linux 2.1.
Last major update 10-09-2008 - 15:09
Published 28-11-2001 - 00:00
Back to Top