exploitDog

CVE-2004-1276

Опубликовано: 10 янв. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, before the files are opened by IglooFTP.

Ссылки

http://tigger.uic.edu/~jlongs2/holes/iglooftp.txt
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18632
http://tigger.uic.edu/~jlongs2/holes/iglooftp.txt
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18632

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:iglooftp:iglooftp:0.6.1:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00062

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-986q-cpq6-jvq6

github

больше 3 лет назад

IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, before the files are opened by IglooFTP.

EPSS

Процентиль: 20%

0.00062

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other