CVE-1999-0997

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 20, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-0997 refers to a vulnerability in wu-ftp where enabling FTP file conversion triggers an issue. Maliciously crafted file names can be interpreted as arguments to the conversion program, allowing attackers to execute arbitrary commands, such as tar or uncompress. This poses a significant security risk if wu-ftp is used with file conversion enabled, making it essential to disable this feature or upgrade to a patched version.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux

Affected Vendors

  • Red Hat