Wu-ftpd Rnfr File Overwrite Network Vulnerability

Summary

The remote Wu-FTPd server seems to be vulnerable to a remote flaw. This version contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formatted rnfr command. This flaw will allow a remote attacker to overwrite any file on the system. *** OVS solely relied on the banner of the remote server *** to issue this warning, so it may be a false positive.

Solution

Upgrade to Wu-FTPd 2.4.2 or newer

Severity

Classification

CVE CVE-1999-0081
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Bftpd Unspecified Remote Denial of Service Vulnerability
vsftpd FTP Server 'ls.c' Remote Denial of Service Vulnerability
wu-ftpd ABOR priviledge escalation
Core FTP Server 'Type' Command Remote Denial of Service Vulnerability
pyftpdlib FTP Server Multiple Directory Traversal Vulnerabilities

wu-ftpd rnfr file overwrite

Take action and discover your vulnerabilities