CVE-2000-0587

Published Jun 26, 2000

Last updated a year ago

Overview

Description: The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E50A926-D68F-4B1E-A009-0808611885B7"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EC24C84-A059-4F09-AE7D-1F077AE8F291"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B8C2E9C-2305-4DAD-8406-D5BFAFBBEEC3"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF143A96-B3A2-4876-8B50-C583B891752D"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3031BA2A-5FEC-425E-AA1E-DA39FD9CF94E"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A877D2D-854A-4614-931B-BC42E70CEE8A"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "070A2213-B877-42DE-9112-7A90E13778C7"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53DC7530-D9CC-4E1B-A96D-505CE0005192"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DAF880E-B556-465A-8CB8-47196EF0D9B1"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34704098-AD9F-405B-AB35-923546A8B7D9"
          },
          {
            "criteria": "cpe:2.3:a:glftpd:glftpd:1.21b8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33E8DEBD-42E4-4EBF-87BF-7F620584BA9B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References