CVE-2001-0696

Опубликовано: 20 сент. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con.

Ссылки

http://netwinsite.com/surgeftp/manual/updates.htm
http://www.securityfocus.com/archive/1/191916
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2891
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6712
http://netwinsite.com/surgeftp/manual/updates.htm
http://www.securityfocus.com/archive/1/191916
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/2891
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6712

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:netwin:surgeftp:1.0b:*:*:*:*:*:*:*

cpe:2.3:a:netwin:surgeftp:2.0a:*:*:*:*:*:*:*

EPSS

Процентиль: 75%

0.00915

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hg3w-82wv-hh9m

github

больше 3 лет назад