VYPR
Unrated severityNVD Advisory· Published Dec 20, 1999· Updated Jun 16, 2026

CVE-1999-0997

CVE-1999-0997

Description

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:millenux_gmbh:anonftp:2.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_washington:wu-ftpd:2.4.2:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:university_of_washington:wu-ftpd:2.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:university_of_washington:wu-ftpd:2.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:university_of_washington:wu-ftpd:2.6.0:*:*:*:*:*:*:*
  • Red Hat/Linux3 versions
    cpe:2.3:o:redhat:linux:5.2:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:redhat:linux:5.2:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:linux:6.0:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:linux:6.1:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.