Lucene search
MitreCVE-2004-0069HistoryFeb 17, 2004 - 5:00 a.m.
CVE-2004-0069
2004-02-1705:00:00
mitre
web.nvd.nist.gov
27
cve-2004-0069
format string vulnerability
hd soft
windows ftp server
remote code execution
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.18
Percentile
96.2%
Format string vulnerability in HD Soft Windows FTP Server 1.6 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the username, which is processed by the wscanf function.
Affected configurations
Node
hd_softwindows_ftp_serverRange≤1.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hd_soft | windows_ftp_server | * | cpe:2.3:a:hd_soft:windows_ftp_server:*:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
HD Soft Windows FTP Server 1.5/1.6 - 'Username' Format String
2004-01-12 00:00:00
cvelist
cvelist
CVE-2004-0069
2004-01-15 05:00:00
nvd
nvd
CVE-2004-0069
2004-02-17 05:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.18
Percentile
96.2%
Related for CVE-2004-0069