CVE-1999-0082

CVSS 2.0 Score 10.0 of 10 (high)

Details

Published Nov 11, 1988
Updated: Sep 9, 2008

Summary

CVE-1999-0082 is a vulnerability affecting the FTP daemon (ftpd) that allows an unauthenticated attacker to gain root access by manipulating the current working directory (CWD) during an FTP session. An attacker can exploit this flaw by sending a specially crafted command to the FTP server, causing it to change its working directory to the root ("~") directory before executing a command, effectively granting the attacker root privileges. This vulnerability poses a major risk to systems running FTP servers and requires immediate patching to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share