Lucene search

[email protected]CVE-2005-1873

HistoryJun 09, 2005 - 4:00 a.m.

CVE-2005-1873

2005-06-0904:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-1873

buffer overflows

crob ftp

remote code execution

security vulnerability

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.03 Low

EPSS

Percentile

90.7%

JSON

Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with a long string or (2) a globbing (“*”) character followed by a long string.

CPENameOperatorVersion
crob:crob_ftpcrob crob ftpeq3.6.1

CPE	Name	Operator	Version
crob:crob_ftp	crob crob ftp	eq	3.6.1

References

lists.grok.org.uk/pipermail/full-disclosure/2005-June/034426.html

secunia.com/advisories/15585

security.lss.hr/index.php?page=details&ID=LSS-2005-06-06

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.03 Low

EPSS

Percentile

90.7%

JSON

Related for CVE-2005-1873

nessus1