Oval Definition:	oval:org.mitre.oval:def:1333
Revision Date: 2007-10-02 Version: 19 Title: WU-FTPD "glob-*" Remote DoS Vulnerability (B.11.00) Description: The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-0256 Platform(s): HP-UX 11 Product(s): ftpd Definition Synopsis 700 Series or 800 Series OS Release 11.00 700 Series OS Release 11.00 700-series HP AND HP Release B.11.00 OR 800 Series OS Release 11.00 800-series HP AND HP Release B.11.00 AND INETSVCS-RUN without patch PHNE_34543 or later, OR WUFTP-26.INETSVCS-FTP with version less than B.11.11.01.006 is installed INETSVCS-RUN without patch PHNE_34543 or later InternetSrvcs.INETSVCS-RUN is installed AND NOT Patch PHNE_34543 is installed OR WUFTP-26.INETSVCS-FTP with version less than B.11.11.01.006 is installed
BACK