Vulnerabilities > CVE-2002-0768 - Remote Security vulnerability in Linux

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

luke-mewburn

suse

NVD

Published: 2002-08-12

Updated: 2008-09-05

Summary

Buffer overflow in lukemftp FTP client in SuSE 6.4 through 8.0, and possibly other operating systems, allows a malicious FTP server to execute arbitrary code via a long PASV command.

Vulnerable Configurations

Part	Description	Count
Application	Luke_Mewburn Luke Mewburn Lukemftp *	1
OS	Suse Suse Suse Linux 6.4 Suse Suse Linux 7.0 Suse Suse Linux 7.1 Suse Suse Linux 7.2 Suse Suse Linux 7.3 Suse Suse Linux 8.0	6

References

http://www.iss.net/security_center/static/9130.php
http://www.novell.com/linux/security/advisories/2002_18_lukemftp.html