Lucene search
HistoryOct 20, 2004 - 4:00 a.m.
CVE-2004-0794
lukemftpd
signal handler
race conditions
code execution
nvd
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.6%
Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code.
Affected configurations
Node
luke_mewburnlukemftpMatch1.1
ORluke_mewburnlukemftpMatch1.5
ORluke_mewburntnftpdMatch2003-12-17
References
Related
freebsd
freebsd
tnftpd -- remotely exploitable vulnerability
2004-08-17 00:00:00
nessus
nessus
FreeBSD : tnftpd -- remotely exploitable vulnerability (194)
2004-08-17 00:00:00
FreeBSD : tnftpd -- remotely exploitable vulnerability (c4b025bb-f05d-11d8-9837-000c41e2cdad)
2009-04-23 00:00:00
Debian DSA-551-1 : lukemftpd - incorrect internal variable handling
2004-09-29 00:00:00
openvas
openvas
FreeBSD Ports: tnftpd
2008-09-04 00:00:00
Debian: Security Advisory (DSA-551-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200409-19 (heimdal)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2004-0794
2004-08-19 04:00:00
osv
osv
lukemftpd - incorrect internal variable handling
2004-09-21 00:00:00
nvd
nvd
CVE-2004-0794
2004-10-20 04:00:00
ubuntucve
ubuntucve
CVE-2004-0794
2004-10-20 00:00:00
debian
debian
[SECURITY] [DSA 551-1] New lukemftpd packages fix arbitrary code execution
2004-09-21 14:30:02
[SECURITY] [DSA 551-1] New lukemftpd packages fix arbitrary code execution
2004-09-21 14:30:02
gentoo
gentoo
Heimdal: ftpd root escalation
2004-09-16 00:00:00
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.6%
Related for CVE-2004-0794