CVE-2000-0876

WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:texas_imperial_software:wftpd:2.34:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:2.40:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd_pro:2.41_rc12:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:2.4.1_rc11:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:2.4.1_rc12:*:*:*:*:*:*:*

Information

Published : 2000-11-13 21:00

Updated : 2017-10-09 18:29


NVD link : CVE-2000-0876

Mitre link : CVE-2000-0876


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

texas_imperial_software

  • wftpd
  • wftpd_pro