Lucene search

MitreCVE-2002-2078

HistoryJul 14, 2005 - 4:00 a.m.

CVE-2002-2078

2005-07-1404:00:00

mitre

web.nvd.nist.gov

cve-2002-2078

buffer overflow

floositek

ftgate pro

ftgate office

denial of service

remote attack

arbitrary code execution

pop3 apop user command

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.5

Confidence

High

EPSS

0.04

Percentile

92.3%

JSON

Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long POP3 APOP USER command.

Affected configurations

Nvd

Node

floosietekftgateofficeMatch1.05

floosietekftgateproMatch1.05

VendorProductVersionCPE
floosietekftgateoffice1.05cpe:2.3:a:floosietek:ftgateoffice:1.05:*:*:*:*:*:*:*
floosietekftgatepro1.05cpe:2.3:a:floosietek:ftgatepro:1.05:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
floosietek	ftgateoffice	1.05	cpe:2.3:a:floosietek:ftgateoffice:1.05:::::::*
floosietek	ftgatepro	1.05	cpe:2.3:a:floosietek:ftgatepro:1.05:::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-04/0053.html

www.ftgate.com/knwldgbs/hotfix.htm

www.iss.net/security_center/static/8749.php

www.security.nnov.ru/advisories/ftgate.asp

www.securityfocus.com/bid/4427

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.5

Confidence

High

EPSS

0.04

Percentile

92.3%

JSON

Related for CVE-2002-2078