Unrated severityNVD Advisory· Published Dec 31, 1999· Updated Apr 16, 2026

CVE-1999-1333

Description

automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the names of files that are to be downloaded.

Affected products

Red Hat/Linux
cpe:2.3:o:redhat:linux:*:*:*:*:*:*:*:*
Range: <=5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd
www.iss.net/security_center/static/7240.phpnvd
www.osvdb.org/6111nvd
www.redhat.com/support/errata/rh50-errata-general.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000