// For flags

CVE-2001-0247

FreeBSD 2.2-4.2 / NetBSD 1.2-4.5 / OpenBSD 2.x - FTPd 'glob()' Remote Buffer Overflow

Severity Score

10.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

4
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2001-03-22 CVE Reserved
  • 2001-04-14 First Exploit
  • 2001-05-24 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-08 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mit
Search vendor "Mit"
Kerberos 5
Search vendor "Mit" for product "Kerberos 5"
1.1.1
Search vendor "Mit" for product "Kerberos 5" and version "1.1.1"
-
Affected
Mit
Search vendor "Mit"
Kerberos 5
Search vendor "Mit" for product "Kerberos 5"
1.2
Search vendor "Mit" for product "Kerberos 5" and version "1.2"
-
Affected
Mit
Search vendor "Mit"
Kerberos 5
Search vendor "Mit" for product "Kerberos 5"
1.2.1
Search vendor "Mit" for product "Kerberos 5" and version "1.2.1"
-
Affected
Mit
Search vendor "Mit"
Kerberos 5
Search vendor "Mit" for product "Kerberos 5"
1.2.2
Search vendor "Mit" for product "Kerberos 5" and version "1.2.2"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.1
Search vendor "Sgi" for product "Irix" and version "6.1"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.1
Search vendor "Sgi" for product "Irix" and version "6.5.1"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.2m
Search vendor "Sgi" for product "Irix" and version "6.5.2m"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.3
Search vendor "Sgi" for product "Irix" and version "6.5.3"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.3f
Search vendor "Sgi" for product "Irix" and version "6.5.3f"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.3m
Search vendor "Sgi" for product "Irix" and version "6.5.3m"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.4
Search vendor "Sgi" for product "Irix" and version "6.5.4"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.5
Search vendor "Sgi" for product "Irix" and version "6.5.5"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.6
Search vendor "Sgi" for product "Irix" and version "6.5.6"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.7
Search vendor "Sgi" for product "Irix" and version "6.5.7"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.8
Search vendor "Sgi" for product "Irix" and version "6.5.8"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.10
Search vendor "Sgi" for product "Irix" and version "6.5.10"
-
Affected
Sgi
Search vendor "Sgi"
Irix
Search vendor "Sgi" for product "Irix"
6.5.11
Search vendor "Sgi" for product "Irix" and version "6.5.11"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2
Search vendor "Freebsd" for product "Freebsd" and version "2.2"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.2
Search vendor "Freebsd" for product "Freebsd" and version "2.2.2"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.3
Search vendor "Freebsd" for product "Freebsd" and version "2.2.3"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.4
Search vendor "Freebsd" for product "Freebsd" and version "2.2.4"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.5
Search vendor "Freebsd" for product "Freebsd" and version "2.2.5"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.6
Search vendor "Freebsd" for product "Freebsd" and version "2.2.6"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
2.2.8
Search vendor "Freebsd" for product "Freebsd" and version "2.2.8"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.0
Search vendor "Freebsd" for product "Freebsd" and version "3.0"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.1
Search vendor "Freebsd" for product "Freebsd" and version "3.1"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.2
Search vendor "Freebsd" for product "Freebsd" and version "3.2"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.3
Search vendor "Freebsd" for product "Freebsd" and version "3.3"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.4
Search vendor "Freebsd" for product "Freebsd" and version "3.4"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.5
Search vendor "Freebsd" for product "Freebsd" and version "3.5"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
3.5.1
Search vendor "Freebsd" for product "Freebsd" and version "3.5.1"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
4.0
Search vendor "Freebsd" for product "Freebsd" and version "4.0"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
4.1
Search vendor "Freebsd" for product "Freebsd" and version "4.1"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
4.1.1
Search vendor "Freebsd" for product "Freebsd" and version "4.1.1"
-
Affected
Freebsd
Search vendor "Freebsd"
Freebsd
Search vendor "Freebsd" for product "Freebsd"
4.2
Search vendor "Freebsd" for product "Freebsd" and version "4.2"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.2.1
Search vendor "Netbsd" for product "Netbsd" and version "1.2.1"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.3
Search vendor "Netbsd" for product "Netbsd" and version "1.3"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.3.1
Search vendor "Netbsd" for product "Netbsd" and version "1.3.1"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.3.2
Search vendor "Netbsd" for product "Netbsd" and version "1.3.2"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.3.3
Search vendor "Netbsd" for product "Netbsd" and version "1.3.3"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.4
Search vendor "Netbsd" for product "Netbsd" and version "1.4"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.4.1
Search vendor "Netbsd" for product "Netbsd" and version "1.4.1"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.4.2
Search vendor "Netbsd" for product "Netbsd" and version "1.4.2"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.4.3
Search vendor "Netbsd" for product "Netbsd" and version "1.4.3"
-
Affected
Netbsd
Search vendor "Netbsd"
Netbsd
Search vendor "Netbsd" for product "Netbsd"
1.5
Search vendor "Netbsd" for product "Netbsd" and version "1.5"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.3
Search vendor "Openbsd" for product "Openbsd" and version "2.3"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.4
Search vendor "Openbsd" for product "Openbsd" and version "2.4"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.5
Search vendor "Openbsd" for product "Openbsd" and version "2.5"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.6
Search vendor "Openbsd" for product "Openbsd" and version "2.6"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.7
Search vendor "Openbsd" for product "Openbsd" and version "2.7"
-
Affected
Openbsd
Search vendor "Openbsd"
Openbsd
Search vendor "Openbsd" for product "Openbsd"
2.8
Search vendor "Openbsd" for product "Openbsd" and version "2.8"
-
Affected