CVE-2000-0645 — MEDIUM (6.4)

Vulnerability Description

WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).

CVSS Score

6.4

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:P

Confidentiality

NONE

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Texas Imperial Software	Wftpd	2.4.1

References

http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.htmlPatchVendor Advisory
http://www.securityfocus.com/bid/1506ExploitPatchVendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.htmlPatchVendor Advisory
http://www.securityfocus.com/bid/1506ExploitPatchVendor Advisory

FAQ

What is CVE-2000-0645?

CVE-2000-0645 is a vulnerability with a CVSS score of 6.4 (MEDIUM). WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via co...

How severe is CVE-2000-0645?

CVE-2000-0645 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0645?

Check the references section above for vendor advisories and patch information. Affected products include: Texas Imperial Software Wftpd.