Описание
WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a 0Ah byte (newline) is sent, which allows local users to cause a denial of service (CPU consumption) by continuing to send a long command that does not contain a newline.
Ссылки
- ExploitPatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:texas_imperial_software:wftpd:3.0:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0:*:pro:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0_0r3:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0_0r4:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0_0r4:*:pro:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0_0r5:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.0_0r5:*:pro:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.10_r1:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.20:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:3.21:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:pro_3.10_r1:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:pro_3.20:*:*:*:*:*:*:*
cpe:2.3:a:texas_imperial_software:wftpd:pro_3.21:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00147
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a 0Ah byte (newline) is sent, which allows local users to cause a denial of service (CPU consumption) by continuing to send a long command that does not contain a newline.
EPSS
Процентиль: 35%
0.00147
Низкий
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other