Lucene search
HistoryOct 05, 2005 - 7:02 p.m.
CVE-2005-2961
cve-2005-2961
prozilla
buffer overflow
remote code execution
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.7%
Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an <a> tag.
Affected configurations
Node
prozillaprozilla_download_acceleratorMatch1.3.7.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| prozilla:prozilla_download_accelerator | prozilla prozilla download accelerator | eq | 1.3.7.4 |
Related
openvas
openvas
Debian Security Advisory DSA 834-1 (prozilla)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-834-1)
2008-01-17 00:00:00
osv
osv
prozilla - buffer overflow
2005-10-01 00:00:00
cvelist
cvelist
CVE-2005-2961
2005-10-05 04:00:00
nvd
nvd
CVE-2005-2961
2005-10-05 19:02:00
nessus
nessus
Debian DSA-834-1 : prozilla - buffer overflow
2005-10-05 00:00:00
debian
debian
[SECURITY] [DSA 834-1] New prozilla packages fix arbitrary code execution
2005-10-01 06:54:07
[SECURITY] [DSA 834-1] New prozilla packages fix arbitrary code execution
2005-10-01 06:54:07
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.7%
Related for CVE-2005-2961