CVE-2004-1332

Severity

75%

Complexity

99%

Confidentiality

106%

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request.

Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote attackers to execute arbitrary code via a long command request.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 20 years ago

2004-12-31 05:00:00

Last updated 7 years ago

2017-10-11 01:29:00

Affected Software

HP HP-UX 10.01

10.01

HP HP-UX 10.10

10.10

HP HP-UX 10.20

10.20

HP HP-UX 10.24

10.24

HP-UX 11.00

11.00

HP HP-UX 11.4

11.4

HP-UX 11.11

11.11

HP HP-UX 11.11i

11.11i

HP-UX 11i v1.6

11.22

HP-UX 11i v2

11.23

HP hp-ux series 700 10.20

10.20

HP hp-ux series 800 10.20

10.20

HP VVOS 10.24

10.24

HP VVOS 11.04

11.04

References

HPSBUX01118

13608

Patch

1012650

20041221 Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability

VU#647438

Patch, Third Party Advisory, US Government Resource

12077

Patch

hp-ftpd-bo(18636)

oval:org.mitre.oval:def:5701

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.