|
|
|||
| Rule General Information |
|---|
| Release Date: | 2012-01-17 | |
| Rule Name: | wu-ftpd SITE EXEC/INDEX Format String Vulnerability (CVE-2000-0573) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | This module exploits a format string vulnerability in versions of the Washington University FTP server older than 2.6.1. By executing specially crafted SITE EXEC or SITE INDEX commands containing format specifiers, an attacker can corrupt memory and execute arbitrary code. | |
| Impact: | Remote code execution | |
| Affected OS: | Linux | |
| Reference: | CVE-2000-0573 msf |
|
| Solutions |
|---|
| Update vendor's patch. |