Lucene search
HistoryFeb 02, 2007 - 9:28 p.m.
CVE-2007-0665
cve-2007-0665
format string vulnerability
ipswitch ws_ftp
scp module
remote attackers
arbitrary commands
nvd
7.8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.1%
Format string vulnerability in the SCP module in Ipswitch WS_FTP 2007 Professional might allow remote attackers to execute arbitrary commands via format string specifiers in the filename, related to the SHELL WS_FTP script command.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ipswitch:ws_ftp_pro | ipswitch ws ftp pro | eq | 2007 |
Related
securityvulns
securityvulns
IPSwitch WS_FTP unfilterd shell characters security vulnerability
2007-01-28 00:00:00
cvelist
cvelist
CVE-2007-0665
2007-02-02 21:00:00
prion
prion
Format string
2007-02-02 21:28:00
7.8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.1%
Related for CVE-2007-0665