HP-UX PHNE_23949 : s700_800 11.00 ftpd(1M) and ftp(1) patch

Critical Nessus Plugin ID 16577


The remote HP-UX host is missing a security-related patch.


s700_800 11.00 ftpd(1M) and ftp(1) patch :

The remote HP-UX host is affected by multiple vulnerabilities :

- A potential vulnerability has been identified with HP-UX running ftpd. The vulnerability could be exploited by a remote unauthenticated user to list directories with the privileges of the root user. (HPSBUX02071 SSRT051064)

- ftpd and ftp incorrectly manage buffers. (HPSBUX00162 SSRT4883)


Install patch PHNE_23949 or subsequent.

See Also



Plugin Details

Severity: Critical

ID: 16577

File Name: hpux_PHNE_23949.nasl

Version: $Revision: 1.13 $

Type: local

Published: 2005/02/16

Modified: 2014/03/12

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Patch Publication Date: 2001/05/18

Vulnerability Publication Date: 2005/10/19

Reference Information

CVE: CVE-2004-1332, CVE-2005-3296

OSVDB: 20680

HP: emr_na-c00542740, emr_na-c00898886, HPSBUX00162, HPSBUX02071, SSRT051064, SSRT4883