Lucene search

[email protected]CVE-2005-3032

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-3032

2022-10-0316:22:37

[email protected]

web.nvd.nist.gov

cve-2005-3032

buffer overflow

vxtftpsrv

remote attackers

denial of service

arbitrary code

tftp request

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

JSON

Buffer overflow in vxTftpSrv 1.7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TFTP request with a long filename argument.

Affected configurations

NVD

Node

cambridge_computer_corporationvxtftpsrvMatch1.7

CPENameOperatorVersion
cambridge_computer_corporation:vxtftpsrvcambridge computer corporation vxtftpsrveq1.7

CPE	Name	Operator	Version
cambridge_computer_corporation:vxtftpsrv	cambridge computer corporation vxtftpsrv	eq	1.7

References

secunia.com/advisories/16840

securitytracker.com/id?1014912

www.airscanner.com/security/05081203_vxtftpsrv.htm

www.securityfocus.com/bid/14842

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

JSON

Related for CVE-2005-3032

nvd1 cvelist1