exploitDog

CVE-2007-0338

Опубликовано: 18 янв. 2007

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.

Ссылки

http://osvdb.org/32816
http://secunia.com/advisories/23731
Vendor Advisory
https://www.exploit-db.com/exploits/3128
http://osvdb.org/32816
http://secunia.com/advisories/23731
Vendor Advisory
https://www.exploit-db.com/exploits/3128

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bolintech:dreamftp_server:*:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.25508

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5733-54p9-5pqh

github

больше 3 лет назад

Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.

EPSS

Процентиль: 96%

0.25508

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other