OpenCVE

The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Washington University	Wu-ftpd

Configuration 1 [-]

OR	cpe:2.3:a:washington_university:wu-ftpd:2.6.1:::::::*
	cpe:2.3:a:washington_university:wu-ftpd:2.6.2:::::::*

No data.

References

Link	Providers
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.63/SCOSA-2005.63.txt
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342
http://secunia.com/advisories/14411
http://secunia.com/advisories/18210
http://secunia.com/advisories/19561
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101699-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1
http://www.debian.org/security/2005/dsa-705
http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities
http://www.osvdb.org/14203
http://www.vupen.com/english/advisories/2005/0588
http://www.vupen.com/english/advisories/2006/1271
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1265
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1333
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1762

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-02-25T05:00:00

Updated: 2024-08-07T21:05:25.485Z

Reserved: 2005-02-09T00:00:00

Link: CVE-2005-0256

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-05-02T04:00:00.000

Modified: 2017-10-11T01:29:55.013

Link: CVE-2005-0256

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-02-25T00:00:00", "descriptions": [{"lang": "en", "value": "The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "DSA-705", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-705"}, {"name": "18210", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18210"}, {"name": "oval:org.mitre.oval:def:1762", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1762"}, {"name": "ADV-2006-1271", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1271"}, {"name": "ADV-2005-0588", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/0588"}, {"name": "57795", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1"}, {"name": "14411", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/14411"}, {"name": "oval:org.mitre.oval:def:1265", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1265"}, {"name": "HPSBUX02110", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "101699", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101699-1"}, {"name": "SCOSA-2005.63", "tags": ["vendor-advisory", "x_refsource_SCO"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.63/SCOSA-2005.63.txt"}, {"name": "19561", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19561"}, {"name": "SSRT061110", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "20050225 WU-FTPD File Globbing Denial of Service Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities"}, {"name": "oval:org.mitre.oval:def:1333", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1333"}, {"name": "14203", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/14203"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-0256", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "DSA-705", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2005/dsa-705"}, {"name": "18210", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18210"}, {"name": "oval:org.mitre.oval:def:1762", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1762"}, {"name": "ADV-2006-1271", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/1271"}, {"name": "ADV-2005-0588", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/0588"}, {"name": "57795", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1"}, {"name": "14411", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/14411"}, {"name": "oval:org.mitre.oval:def:1265", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1265"}, {"name": "HPSBUX02110", "refsource": "HP", "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "101699", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101699-1"}, {"name": "SCOSA-2005.63", "refsource": "SCO", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.63/SCOSA-2005.63.txt"}, {"name": "19561", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19561"}, {"name": "SSRT061110", "refsource": "HP", "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "20050225 WU-FTPD File Globbing Denial of Service Vulnerability", "refsource": "IDEFENSE", "url": "http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities"}, {"name": "oval:org.mitre.oval:def:1333", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1333"}, {"name": "14203", "refsource": "OSVDB", "url": "http://www.osvdb.org/14203"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T21:05:25.485Z"}, "title": "CVE Program Container", "references": [{"name": "DSA-705", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2005/dsa-705"}, {"name": "18210", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18210"}, {"name": "oval:org.mitre.oval:def:1762", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1762"}, {"name": "ADV-2006-1271", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/1271"}, {"name": "ADV-2005-0588", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/0588"}, {"name": "57795", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1"}, {"name": "14411", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/14411"}, {"name": "oval:org.mitre.oval:def:1265", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1265"}, {"name": "HPSBUX02110", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "101699", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101699-1"}, {"name": "SCOSA-2005.63", "tags": ["vendor-advisory", "x_refsource_SCO", "x_transferred"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.63/SCOSA-2005.63.txt"}, {"name": "19561", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/19561"}, {"name": "SSRT061110", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"name": "20050225 WU-FTPD File Globbing Denial of Service Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities"}, {"name": "oval:org.mitre.oval:def:1333", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1333"}, {"name": "14203", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/14203"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-0256", "datePublished": "2005-02-25T05:00:00", "dateReserved": "2005-02-09T00:00:00", "dateUpdated": "2024-08-07T21:05:25.485Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:washington_university:wu-ftpd:2.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "7196CF2D-8CCC-454A-A2C1-6408A9D636C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:washington_university:wu-ftpd:2.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "D851CEBD-4FE5-46D9-99BD-CA3F3235B2E6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command."}], "id": "CVE-2005-0256", "lastModified": "2017-10-11T01:29:55.013", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-05-02T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.63/SCOSA-2005.63.txt"}, {"source": "cve@mitre.org", "url": "http://itrc.hp.com/service/cki/docDisplay.do?docId=c00637342"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/14411"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/18210"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/19561"}, {"source": "cve@mitre.org", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101699-1"}, {"source": "cve@mitre.org", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57795-1"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2005/dsa-705"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.idefense.com/application/poi/display?id=207&type=vulnerabilities"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/14203"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2005/0588"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/1271"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1265"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1333"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1762"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "Not vulnerable. Red Hat Enterprise Linux 2.1 shipped with wu-ftpd, however we were unable to reproduce this issue. Additionally, a code analysis showed that attempts to exploit this issue would be caught in the versions we shipped.\nhttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=149720", "lastModified": "2006-10-23T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}