CVE-2007-0428
6.6 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.045 Low
EPSS
Percentile
92.5%
Unspecified vulnerability in the chtbl_lookup function in hash.c for WzdFTPD 8.0 and earlier allows remote attackers to cause a denial of service via a crafted FTP command, probably due to a NULL pointer dereference.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| wzdftpd:wzdftpd | wzdftpd | le | 8.0 |
References
lists.grok.org.uk/pipermail/full-disclosure/2007-January/051896.html
osvdb.org/32941
secunia.com/advisories/23852
securityreason.com/securityalert/2171
securitytracker.com/id?1017537
www.s21sec.com/avisos/s21sec-033-en.txt
www.securityfocus.com/archive/1/457454/100/0/threaded
www.vupen.com/english/advisories/2007/0277
exchange.xforce.ibmcloud.com/vulnerabilities/31599
Related
6.6 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.045 Low
EPSS
Percentile
92.5%