Wzdftpd SITE Command Arbitrary Command Execution Vulnerability

Bugtraq ID: 14935
Class: Input Validation Error
CVE: CVE-2005-3081
Remote: Yes
Local: No
Published: Sep 24 2005 12:00AM
Updated: Dec 15 2006 08:23PM
Credit: Discovery is credited to kcope.
Vulnerable: wzdftpd wzdftpd 0.5.4
wzdftpd wzdftpd 0.5.2
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus