CVE Catalog

CVE-2000-0129

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

High risk
3.79%

89th percentile — higher than 89% of all known CVEs

Summary

Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

Risk Assessment

Attackers can exploit this vulnerability to disrupt the operation of the FTP server, leading to service unavailability for users.

Recommendation

It is recommended to update the Serv-U FTP server to the latest version to eliminate this vulnerability and to monitor logs for potential attack attempts.

Original NVD description (English source)

Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS