CVE-2007-0020

Опубликовано: 24 янв. 2007

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Heap-based buffer overflow in the SFTP protocol handler for Panic Transmit (Transmit.app) up to 3.5.5 allows remote attackers to execute arbitrary code via a long ftps:// URL.

Ссылки

http://osvdb.org/32694
http://projects.info-pull.com/moab/MOAB-19-01-2007.html
Vendor Advisory
http://secunia.com/advisories/23861
Vendor Advisory
http://www.securityfocus.com/bid/22145
http://www.vupen.com/english/advisories/2007/0273
https://exchange.xforce.ibmcloud.com/vulnerabilities/31673
https://www.exploit-db.com/exploits/3160
http://osvdb.org/32694
http://projects.info-pull.com/moab/MOAB-19-01-2007.html
Vendor Advisory
http://secunia.com/advisories/23861
Vendor Advisory
http://www.securityfocus.com/bid/22145
http://www.vupen.com/english/advisories/2007/0273
https://exchange.xforce.ibmcloud.com/vulnerabilities/31673
https://www.exploit-db.com/exploits/3160

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:panic_transmit:panic_transmit:*:*:*:*:*:*:*:*

Версия до 3.5.5 (включая)

EPSS

Процентиль: 96%

0.27067

Средний

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-w428-mh5f-5c4q

github

почти 4 года назад