← back
CVE-2001-0187

CVE-2001-0187

EPSS 5.7%
Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/20594unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_current/missing_format_strings.patchhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000443https://exchange.xforce.ibmcloud.com/vulnerabilities/6020http://www.debian.org/security/2001/dsa-016http://www.securityfocus.com/bid/2296