CVE-2003-0963

Published: Dec 17, 2003

Modified: Aug 8, 2024

PUBLISHED

Description

Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20031217 [OpenPKG-SA-2003.053] OpenPKG Security Advisory (lftp)

mailing-list

x_refsource_BUGTRAQ

RHSA-2003:404

vendor-advisory

x_refsource_REDHAT

DSA-406

vendor-advisory

x_refsource_DEBIAN

MDKSA-2003:116

vendor-advisory

x_refsource_MANDRAKE

10525

third-party-advisory

x_refsource_SECUNIA

SuSE-SA:2003:051

vendor-advisory

x_refsource_SUSE

oval:org.mitre.oval:def:11180

vdb-entry

signature

x_refsource_OVAL

20031212 [slackware-security] lftp security update (SSA:2003-346-01)

mailing-list

x_refsource_BUGTRAQ

20031218 GLSA: lftp (200312-07)

mailing-list

x_refsource_BUGTRAQ

10548

third-party-advisory

x_refsource_SECUNIA

CLA-2004:800

vendor-advisory

x_refsource_CONECTIVA

RHSA-2003:403

vendor-advisory

x_refsource_REDHAT

20031213 lftp buffer overflows

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2003-0963

Description

Affected Products

References