Описание
Format string vulnerability in HD Soft Windows FTP Server 1.6 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the username, which is processed by the wscanf function.
Ссылки
- ExploitVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.6 (включая)
cpe:2.3:a:hd_soft:windows_ftp_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08299
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Format string vulnerability in HD Soft Windows FTP Server 1.6 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the username, which is processed by the wscanf function.
EPSS
Процентиль: 92%
0.08299
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other