Critical severity9.8NVD Advisory· Published Aug 27, 2003· Updated Apr 16, 2026

CVE-2003-0466

Description

Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.

Affected products

Red Hat/Wu Ftpd
cpe:2.3:a:redhat:wu_ftpd:2.6.1-16:*:*:*:*:*:*:*
Wuftpd/Wu Ftpd
cpe:2.3:a:wuftpd:wu-ftpd:*:*:*:*:*:*:*:*
Range: >=2.5.0,<=2.6.2
Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:10.2.6:*:*:*:*:*:*:*
Apple Inc./Mac Os X Server
cpe:2.3:o:apple:mac_os_x_server:10.2.6:*:*:*:*:*:*:*
FreeBSD/FreeBSD
cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
Range: >=4.0,<=5.0
NetBSD/NetBSD
cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*
Range: >=1.5,<=1.6.1
OpenBSD/OpenBSD
cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*
Range: >=2.0,<=3.3
Sun Corporation/Solaris
cpe:2.3:o:sun:solaris:9.0:*:*:*:*:sparc:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/vulnwatch/2003-q3/0065.htmlnvdBroken LinkExploitVendor Advisory
www.securityfocus.com/bid/8315nvdBroken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
www.kb.cert.org/vuls/id/743092nvdThird Party AdvisoryUS Government Resource
www.mandriva.com/security/advisoriesnvdThird Party Advisory
www.securityfocus.com/archive/1/424852/100/0/threadednvdBroken LinkThird Party AdvisoryVDB Entry
www.securityfocus.com/archive/1/425061/100/0/threadednvdBroken LinkThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/12785nvdThird Party AdvisoryVDB Entry
ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-011.txt.ascnvdBroken Link
download.immunix.org/ImmunixOS/7+/Updates/errata/IMNX-2003-7+-019-01nvdBroken Link
isec.pl/vulnerabilities/isec-0011-wu-ftpd.txtnvdBroken Link
marc.infonvdMailing List
marc.infonvdMailing List
marc.infonvdMailing List
marc.infonvdMailing List
secunia.com/advisories/9423nvdBroken Link
secunia.com/advisories/9446nvdBroken Link
secunia.com/advisories/9447nvdBroken Link
secunia.com/advisories/9535nvdBroken Link
sunsolve.sun.com/search/document.donvdBroken Link
www.debian.org/security/2003/dsa-357nvdBroken Link
www.novell.com/linux/security/advisories/2003_032_wuftpd.htmlnvdBroken Link
www.osvdb.org/6602nvdBroken Link
www.redhat.com/support/errata/RHSA-2003-245.htmlnvdBroken Link
www.redhat.com/support/errata/RHSA-2003-246.htmlnvdBroken Link
www.turbolinux.com/security/TLSA-2003-46.txtnvdBroken Link
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1970nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.073
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000