CVE-1999-0997

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 20, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0997 is a vulnerability affecting wu-ftp servers with the FTP conversion feature enabled. Maliciously crafted file names can be used to execute commands on the system by being interpreted as arguments to the conversion program, such as tar or uncompress. This issue poses a significant security risk as it allows remote attackers to gain unauthorized access and potentially take control of the server. It is essential for administrators to disable this feature or upgrade to a patched version of the software to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux

Affected Vendors

Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlPeC
https://www.cve.org/CVERecord?id=CVE-1999-0997
https://nvd.nist.gov/vuln/detail/CVE-1999-0997

Back to Vulnerability Database