CVE-2003-0041

Published Feb 19, 2003

Last updated 9 months ago

Overview

Description: Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-78

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mit:kerberos_ftp_client:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B51B344D-A39A-4318-B291-88C5FD8513A1"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:linux:6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0633B5A6-7A88-4A96-9462-4C09D124ED36"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29B186E5-7C2F-466E-AA4A-8F2B618F8A14"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D46E093-1C68-43BB-B281-12117EC8DE0F"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E562907F-D915-4030-847A-3C6834A80D4E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "138985E6-5107-4E8B-A801-C3D5FE075227"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "038FEDE7-986F-4CA5-9003-BA68352B87D4"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mandrakesoft:mandrake_multi_network_firewall:8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4F3F3BB-E004-4FD9-9580-F2D5F3ED3701"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "205EF72B-7334-4AE0-9CA6-D2E8E5910C8E"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEB99324-3062-426F-8E2F-44DC3A7ADB2A"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33F6F859-B7B8-4072-B073-6CC8291D642E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References