| ID |
CVE-2004-1332
|
| Summary |
Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.4:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.4:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.11i:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.11i:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux:11.23:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.23:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux_series_700:10.20:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux_series_700:10.20:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:hp-ux_series_800:10.20:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux_series_800:10.20:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:sis:*:*:*:*:*:*:*:*
cpe:2.3:o:hp:sis:*:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:vvos:10.24:*:*:*:*:*:*:*
cpe:2.3:o:hp:vvos:10.24:*:*:*:*:*:*:*
-
cpe:2.3:o:hp:vvos:11.04:*:*:*:*:*:*:*
cpe:2.3:o:hp:vvos:11.04:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 7.5 (as of 11-10-2017 - 01:29) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
| oval
via4
|
| accepted | 2014-03-24T04:01:45.272-04:00 | | class | vulnerability | | contributors | | name | Michael Wood | | organization | Hewlett-Packard |
| name | Sushant Kumar Singh | | organization | Hewlett-Packard |
| | description | Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request. | | family | unix | | id | oval:org.mitre.oval:def:5701 | | status | accepted | | submitted | 2008-07-08T17:01:37.000-04:00 | | title | HP-UX ftpd, Remote Privileged Access | | version | 40 |
|
| refmap
via4
|
| bid | 12077 | | cert-vn | VU#647438 | | hp | | | idefense | 20041221 Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability | | sectrack | 1012650 | | secunia | 13608 | | xf | hp-ftpd-bo(18636) |
|
| Last major update |
11-10-2017 - 01:29 |
| Published |
31-12-2004 - 05:00 |
| Last modified |
11-10-2017 - 01:29 |
