Buffer overflow in the glob implementation (glob.c) in libc in NetBSD-current before 20050914, NetBSD 2.* and 3.* before 20061203, and Apple Mac OS X before 2007-004, as used by the FTP daemon and tnftpd, allows remote authenticated users to execute arbitrary code via a long pathname that results from path expansion.
2006-12-20T02:28:00.000
2025-04-09T00:30:58.490
Deferred
CVSSv2: 9.0 (HIGH)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | mac_os_x | 10.0 | Yes |
| Operating System | apple | mac_os_x | 10.0.1 | Yes |
| Operating System | apple | mac_os_x | 10.0.2 | Yes |
| Operating System | apple | mac_os_x | 10.0.3 | Yes |
| Operating System | apple | mac_os_x | 10.0.4 | Yes |
| Operating System | apple | mac_os_x | 10.1 | Yes |
| Operating System | apple | mac_os_x | 10.1.1 | Yes |
| Operating System | apple | mac_os_x | 10.1.2 | Yes |
| Operating System | apple | mac_os_x | 10.1.3 | Yes |
| Operating System | apple | mac_os_x | 10.1.4 | Yes |
| Operating System | apple | mac_os_x | 10.1.5 | Yes |
| Operating System | apple | mac_os_x | 10.2 | Yes |
| Operating System | apple | mac_os_x | 10.2.1 | Yes |
| Operating System | apple | mac_os_x | 10.2.2 | Yes |
| Operating System | apple | mac_os_x | 10.2.3 | Yes |
| Operating System | apple | mac_os_x | 10.2.4 | Yes |
| Operating System | apple | mac_os_x | 10.2.5 | Yes |
| Operating System | apple | mac_os_x | 10.2.6 | Yes |
| Operating System | apple | mac_os_x | 10.2.7 | Yes |
| Operating System | apple | mac_os_x | 10.2.8 | Yes |
| Operating System | apple | mac_os_x | 10.3 | Yes |
| Operating System | apple | mac_os_x | 10.3.1 | Yes |
| Operating System | apple | mac_os_x | 10.3.2 | Yes |
| Operating System | apple | mac_os_x | 10.3.3 | Yes |
| Operating System | apple | mac_os_x | 10.3.4 | Yes |
| Operating System | apple | mac_os_x | 10.3.5 | Yes |
| Operating System | apple | mac_os_x | 10.3.6 | Yes |
| Operating System | apple | mac_os_x | 10.3.7 | Yes |
| Operating System | apple | mac_os_x | 10.3.8 | Yes |
| Operating System | apple | mac_os_x | 10.3.9 | Yes |
| Operating System | apple | mac_os_x | 10.4 | Yes |
| Operating System | apple | mac_os_x | 10.4.1 | Yes |
| Operating System | apple | mac_os_x | 10.4.2 | Yes |
| Operating System | apple | mac_os_x | 10.4.3 | Yes |
| Operating System | apple | mac_os_x | 10.4.4 | Yes |
| Operating System | apple | mac_os_x | 10.4.5 | Yes |
| Operating System | apple | mac_os_x | 10.4.6 | Yes |
| Operating System | apple | mac_os_x | 10.4.7 | Yes |
| Operating System | apple | mac_os_x | 10.4.8 | Yes |
| Operating System | apple | mac_os_x | 10.4.9 | Yes |
| Operating System | apple | mac_os_x | 10.4.10 | Yes |
| Operating System | netbsd | netbsd | 2.0 | Yes |
| Operating System | netbsd | netbsd | 2.1 | Yes |
| Operating System | netbsd | netbsd | 3.0 | Yes |
| Operating System | netbsd | netbsd | 3.1 | Yes |