Описание
Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:vandyke:absoluteftp:1.9.6:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:vandyke:absoluteftp:2.2.10:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.55543
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response.
EPSS
Процентиль: 98%
0.55543
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119