CVE-2004-2037

Опубликовано: 24 мар. 2004

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Buffer overflow in Mollensoft Lightweight FTP Server 3.6 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long CWD command, as demonstrated in one example by using the "cd" command in an interactive FTP client.

Ссылки

http://marc.info/?l=bugtraq&m=108577846011604&w=2
http://marc.info/?l=bugtraq&m=108611230015042&w=2
http://securitytracker.com/id?1010328
http://www.osvdb.org/6412
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10409
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/10429
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16237
https://exchange.xforce.ibmcloud.com/vulnerabilities/16303
http://marc.info/?l=bugtraq&m=108577846011604&w=2
http://marc.info/?l=bugtraq&m=108611230015042&w=2
http://securitytracker.com/id?1010328
http://www.osvdb.org/6412
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10409
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/10429
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16237
https://exchange.xforce.ibmcloud.com/vulnerabilities/16303

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mollensoft_software:lightweight_ftp_server:3.6:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.22703

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-p65m-pc6q-hg8v

github

почти 4 года назад