CVE-2014-1215

Опубликовано: 20 мар. 2018

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and Windows Registry.

Ссылки

http://www.securityfocus.com/archive/1/531144/100/0/threaded
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1215/
Third Party Advisory
http://www.securityfocus.com/archive/1/531144/100/0/threaded
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1215/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:coreftp:core_ftp:*:*:*:*:*:*:*:*

Версия до 1.2 (включая)

EPSS

Процентиль: 17%

0.00053

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-5fqx-pg59-xr74