See Recorded Future’s Threat Intelligence Solutions in Action

See our Threat Intelligence Solutions in Action

Reduce risk and mitigate cyber attacks, no matter your IT & security stack, maturity journey, or industry

Book a free demo

View Solutions to Reduce Risk

See Recorded Future’s Intelligence in Action

Reduce operational risk through timely, precise, and actionable intelligence.

Book a free demo

Intelligence Cloud Overview

View Services & Support Overview

View Research Overview

CVE-1999-0997

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 20, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0997 is a vulnerability affecting wu-ftp servers with the FTP conversion feature enabled. Maliciously crafted file names can be used to execute arbitrary commands on the server, bypassing the FTP environment. The issue arises when the program handling the file conversion (such as tar or uncompress) interprets the malformed file name as an argument, allowing command execution. This vulnerability poses a significant risk, as it can lead to unauthorized system access and data manipulation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux

Affected Vendors

Red Hat

Advisories, Assessments, and Mitigations

Back to Vulnerability Database