CVE-2004-2675

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted.

Ссылки

http://secunia.com/advisories/11002
Patch
http://www.argosoft.com/rootpages/FtpServer/ChangeList.aspx
http://www.osvdb.org/11332
http://www.securiteam.com/windowsntfocus/5RP010KCAO.html
http://www.securityfocus.com/bid/9770
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15412
http://secunia.com/advisories/11002
Patch
http://www.argosoft.com/rootpages/FtpServer/ChangeList.aspx
http://www.osvdb.org/11332
http://www.securiteam.com/windowsntfocus/5RP010KCAO.html
http://www.securityfocus.com/bid/9770
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15412

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:argosoft:ftp_server:*:*:*:*:*:*:*:*

Версия до 1.4.1.5 (включая)

EPSS

Процентиль: 92%

0.0785

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-qc6j-jv93-f7h8

github

почти 4 года назад