Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDEF410571-A541-11D9-A788-0001020EED82
HistoryFeb 05, 2005 - 12:00 a.m.

wu-ftpd -- remote globbing DoS vulnerability

2005-02-0500:00:00
vuxml.freebsd.org
12

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.072 Low

EPSS

Percentile

94.0%

JSON

An iDEFENSE Security Advisory reports:

Remote exploitation of an input validation vulnerability
in version 2.6.2 of WU-FPTD could allow for a denial of
service of the system by resource exhaustion.
The vulnerability specifically exists in the
wu_fnmatch() function in wu_fnmatch.c. When a
pattern containing a ‘’ character is supplied as input,
the function calls itself recursively on a smaller
substring. By supplying a string which contains a large
number of '’ characters, the system will take a long time
to return the results, during which time it will be using
a large amount of CPU time.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchwu-ftpd< 2.6.2_6UNKNOWN
FreeBSDanynoarchwu-ftpd+ipv6< 2.6.2_7UNKNOWN

Related

nessus 8
openvas 6
checkpoint_advisories 2
securityvulns 1
redhatcve 1
cve 1
cvelist 1
ubuntucve 1
nvd 1
debian 2
osv 1
nessus
nessus
HP-UX PHNE_34543 : HP-UX Running wu-ftpd Remote Denial of Service (DoS) (HPSBUX02110 SSRT061110 rev.1)
2006-05-13 00:00:00
Solaris 10 (x86) : 120086-02
2005-07-17 00:00:00
HP-UX PHNE_34306 : HP-UX Running wu-ftpd Remote Denial of Service (DoS) (HPSBUX02110 SSRT061110 rev.1)
2006-05-13 00:00:00
openvas
openvas
FTPD glob (too many *) DoS Vulnerability
2005-11-03 00:00:00
FreeBSD Ports: wu-ftpd
2008-09-04 00:00:00
FTPD glob (too many *) denial of service
2005-11-03 00:00:00
checkpoint_advisories
checkpoint_advisories
WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)
2014-01-07 00:00:00
WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)
2014-02-03 00:00:00
securityvulns
securityvulns
[Full-Disclosure] iDEFENSE Security Advisory 02.25.05: WU-FTPD File Globbing Denial of Service Vulnerability
2005-02-25 00:00:00
redhatcve
redhatcve
CVE-2005-0256
2015-10-30 10:13:52
cve
cve
CVE-2005-0256
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-0256
2005-02-25 05:00:00
ubuntucve
ubuntucve
CVE-2005-0256
2005-05-02 00:00:00
nvd
nvd
CVE-2005-0256
2005-05-02 04:00:00
debian
debian
[SECURITY] [DSA 705-1] New wu-ftpd packages fix denial of service
2005-04-04 15:18:51
[SECURITY] [DSA 705-1] New wu-ftpd packages fix denial of service
2005-04-04 15:18:51
osv
osv
wu-ftpd - missing input sanitising
2005-04-04 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.072 Low

EPSS

Percentile

94.0%

JSON
Related for EF410571-A541-11D9-A788-0001020EED82
nessus8openvas6checkpoint_advisories2securityvulns1redhatcve1cve1cvelist1ubuntucve1nvd1debian2osv1