Описание
Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:novell:netware_ftp_server:5.01i:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.01o:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.01w:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.01y:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.02b:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.02i:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.02r:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.02y:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.03b:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.03l:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.04.5:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.04.8:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.04.20:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.04.25:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.05:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.05.04:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.06.04:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.06.05:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.07:*:*:*:*:*:*:*
cpe:2.3:a:novell:netware_ftp_server:5.07.02:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:novell:netware:5.1:*:*:*:*:*:*:*
cpe:2.3:o:novell:netware:5.1:sp2a:*:*:*:*:*:*
cpe:2.3:o:novell:netware:5.1:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:netware:5.1:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:netware:5.1:sp6:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.0:*:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.0:sp1:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.0:sp2:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.0:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:*:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp1:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp1.1a:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp1.1b:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp2:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp3:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp5:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp6:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp7:*:*:*:*:*:*
cpe:2.3:o:novell:netware:6.5:sp8:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.27635
Средний
6.5 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.
EPSS
Процентиль: 96%
0.27635
Средний
6.5 Medium
CVSS2
Дефекты
CWE-119