Lucene search
HistoryFeb 23, 2005 - 5:00 a.m.
CVE-2005-0519
argosoft ftp server
vulnerability
remote attackers
file reading
zip files
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520.
Affected configurations
Node
argosoftftp_serverMatch1.4.1.1
ORargosoftftp_serverMatch1.4.1.2
ORargosoftftp_serverMatch1.4.1.3
ORargosoftftp_serverMatch1.4.1.4
ORargosoftftp_serverMatch1.4.1.5
ORargosoftftp_serverMatch1.4.1.6
ORargosoftftp_serverMatch1.4.1.7
ORargosoftftp_serverMatch1.4.1.8
ORargosoftftp_serverMatch1.4.1.9
ORargosoftftp_serverMatch1.4.2
ORargosoftftp_serverMatch1.4.2.1
ORargosoftftp_serverMatch1.4.2.2
References
Social References
More
Related
cvelist
cvelist
CVE-2005-0519
2005-02-23 05:00:00
CVE-2005-0520
2005-02-23 05:00:00
cve
cve
CVE-2005-0520
2005-02-23 05:00:00
nvd
nvd
CVE-2005-0519
2005-02-18 05:00:00
CVE-2005-0520
2005-02-23 05:00:00
nessus
nessus
ArGoSoft FTP Server < 1.4.2.8 Multiple .LNK File Handling Vulnerabilities
2005-02-09 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Related for CVE-2005-0519