CVE-2001-0421 Information

Description

FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory possibly with world-readable permissions by providing a valid username with an invalid password followed by a CWD ~ command which could release sensitive information such as shadowed passwords or fill the disk partition.

Reference

http://www.securityfocus.com/archive/1/177200 http://www.securityfocus.com/bid/2601