washington university

Top products

The 15 most recently published vulnerabilities affecting washington university.

• CVE-2003-1329ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same local address," does not close failed connections, which allows remote attacke...7.8May 21, 2007
• CVE-2003-1327Buffer overflow in the SockPrintf function in wu-ftpd 2.6.2 and earlier, when compiled with MAIL_ADMIN option enabled on a system that supports very long pathnames, might allow remote anonymous use...9.3May 15, 2007
• CVE-2005-0256The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wi...5.0Feb 25, 2005
• CVE-2004-0185Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a s/key (SKEY...10.0Sep 1, 2004
• CVE-2004-0148wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which caus...7.2Sep 1, 2004
• CVE-2003-0854ls in the fileutils or coreutils packages allows local users to consume a large amount of memory via a large -w value, which can be remotely exploited via applications that use ls, such as wu-ftpd.2.1Oct 25, 2003
• CVE-2003-0853An integer overflow in ls in the fileutils or coreutils packages may allow local users to cause a denial of service or execute arbitrary code via a large -w value, which could be remotely exploited...5.0Oct 25, 2003
• CVE-2001-0550wu-ftpd 2.6.1 allows remote attackers to execute arbitrary commands via a "~{" argument to commands such as CWD, which is not properly handled by the glob function (ftpglob).7.5Jun 25, 2002
• CVE-1999-1326wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows lo...5.0Mar 9, 2002
• CVE-2001-0935Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.7.5Feb 2, 2002
• CVE-2001-0187Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a P...10.0May 7, 2001
• CVE-2000-0574FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title),...5.0Jul 19, 2000
• CVE-1999-0156wu-ftpd FTP daemon allows any user and password combination.4.6Feb 4, 2000
• CVE-1999-0076Buffer overflow in wu-ftp from PASV command causes a core dump.5.0Feb 4, 2000
• CVE-1999-0955Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.7.6Jan 18, 2000