Lucene search

[email protected]CVE-2007-0825

HistoryFeb 07, 2007 - 10:28 p.m.

CVE-2007-0825

2007-02-0722:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

flashfxp

denial of service

vulnerability

cve-2007-0825

nvd

7.2 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.009 Low

EPSS

Percentile

83.1%

JSON

FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service (CPU consumption) via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow.

CPENameOperatorVersion
flashfxp:flashfxpflashfxpeq3.4.0_build_1145

CPE	Name	Operator	Version
flashfxp:flashfxp	flashfxp	eq	3.4.0_build_1145

References

osvdb.org/35796

www.securityfocus.com/bid/22433

exchange.xforce.ibmcloud.com/vulnerabilities/32416

www.exploit-db.com/exploits/3276

7.2 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.009 Low

EPSS

Percentile

83.1%

JSON

Related for CVE-2007-0825

prion1 cvelist1 securityvulns1