CVE-2000-0573

EPSS 96.3%

Vexday Risk Score

60Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 96.3%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado

Lifecycle

15 Oct 1999Public PoC

22 Jun 2000Metasploit module available

07 May 2001Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.

Affected products

n/a · n/a

public PoCs found — 7

exploitdbwww.exploit-db.com/exploits/16311unverified exploitdbwww.exploit-db.com/exploits/20031unverified exploitdbwww.exploit-db.com/exploits/269unverified exploitdbwww.exploit-db.com/exploits/20032unverified exploitdbwww.exploit-db.com/exploits/201unverified exploitdbwww.exploit-db.com/exploits/239unverified exploitdbwww.exploit-db.com/exploits/20030unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:29.wu-ftpd.asc.v1.1 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-009.txt.asc http://archives.neohapsis.com/archives/bugtraq/2000-06/0244.html http://archives.neohapsis.com/archives/bugtraq/2000-07/0017.html http://marc.info/?l=bugtraq&m=96171893218000&w=2 http://marc.info/?l=bugtraq&m=96179429114160&w=2 http://marc.info/?l=bugtraq&m=96299933720862&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/4773 http://www.calderasystems.com/support/security/advisories/CSSA-2000-020.0.txt http://www.cert.org/advisories/CA-2000-13.html http://www.redhat.com/support/errata/RHSA-2000-039.html