CVE-2005-0256

Publication date 2 May 2005

Last updated 17 July 2025

Ubuntu priority

The wu_fnmatch function in wu_fnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
wu-ftpd	7.04 feisty	Fixed 2.6.2-20
	6.10 edgy	Fixed 2.6.2-20
	6.06 LTS dapper	Fixed 2.6.2-20

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2005-0256