Oval Definition:
oval:org.mitre.oval:def:438
Revision Date
:
2007-03-21
Version
:
18
Title
:
HP-UX ftpd Remote Unauthorized Data Access (B.11.00)
Description
:
The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2005-3296
Platform(s)
:
HP-UX 11
Product(s)
:
ftpd
Definition Synopsis
700 Series or 800 Series OS Release 11.00
700 Series OS Release 11.00
700-series HP
AND
HP Release B.11.00
OR
800 Series OS Release 11.00
800-series HP
AND
HP Release B.11.00
AND
WUFTP-26.INETSVCS-FTP with version less than B.11.00.01.005 is installed
BACK