Lucene search
HistoryMay 19, 2005 - 4:00 a.m.
CVE-2004-2074
cve-2004-2074
dream ftp
format string vulnerability
denial of service
crash
local users
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.2 Medium
AI Score
Confidence
High
0.026 Low
EPSS
Percentile
90.4%
Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands.
Affected configurations
Node
bolintechdream_ftp_serverMatch1.02
| CPE | Name | Operator | Version |
|---|---|---|---|
| bolintech:dream_ftp_server | bolintech dream ftp server | eq | 1.02 |
Related
nessus
nessus
DreamFTP Server username Remote Format String
2004-03-04 00:00:00
packetstorm
packetstorm
BolinTech Dream FTP Server 1.02 Format String
2009-11-27 00:00:00
nvd
nvd
CVE-2004-2074
2004-12-31 05:00:00
cvelist
cvelist
CVE-2004-2074
2005-05-19 04:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.2 Medium
AI Score
Confidence
High
0.026 Low
EPSS
Percentile
90.4%
Related for CVE-2004-2074