• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Date Entry Created
20010322 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20010910-01)
Votes (Legacy)
ACCEPT(5) Baker, Cole, Oliver, Renaud, Ziese
MODIFY(1) Frech
NOOP(2) Christey, Wall
Comments (Legacy)
 Frech> XF:ftp-glob-expansion(6332)
 Christey> ADDREF SGI:20010802-01-P
 Christey> COMPAQ:SSRT-547

Proposed (Legacy)
This is an entry on the CVE list, which standardizes names for security problems.