Lucene search
HistoryNov 23, 2004 - 5:00 a.m.
CVE-2004-0287
xlight ftp server
denial of service
buffer overflow
cve-2004-0287
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.09 Low
EPSS
Percentile
94.6%
Xlight FTP server 1.52 allows remote authenticated users to cause a denial of service (crash) via a RETR command with a long argument containing a large number of / (slash) characters, possibly triggering a buffer overflow.
Affected configurations
Node
xlight_ftp_serverxlight_ftp_serverMatch1.52
| CPE | Name | Operator | Version |
|---|---|---|---|
| xlight_ftp_server:xlight_ftp_server | xlight ftp server | eq | 1.52 |
Related
cvelist
cvelist
CVE-2004-0287
2004-03-18 05:00:00
nvd
nvd
CVE-2004-0287
2004-11-23 05:00:00
nessus
nessus
Xlight FTP Server Multiple Remote Overflows
2004-02-16 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.09 Low
EPSS
Percentile
94.6%
Related for CVE-2004-0287