CVE-2005-0312

Опубликовано: 27 янв. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability.

Ссылки

http://marc.info/?l=bugtraq&m=110687202332039&w=2
http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
Vendor Advisory
http://www.securityfocus.com/bid/12384
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19129
http://marc.info/?l=bugtraq&m=110687202332039&w=2
http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
Vendor Advisory
http://www.securityfocus.com/bid/12384
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19129

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:war_ftp_daemon:war_ftp_daemon:1.8:*:*:*:*:*:*:*

cpe:2.3:a:war_ftp_daemon:war_ftp_daemon:1.82_rc9:*:*:*:*:*:*:*

EPSS

Процентиль: 80%

0.01334

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rr63-mfwq-872f

github

почти 4 года назад