Lucene search

[email protected]CVE-2007-1014

HistoryFeb 21, 2007 - 11:28 a.m.

CVE-2007-1014

2007-02-2111:28:00

[email protected]

web.nvd.nist.gov

cve-2007-1014

vicftps

buffer overflow

denial of service

arbitrary code

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.158 Low

EPSS

Percentile

96.0%

JSON

Stack-based buffer overflow in VicFTPS before 5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long CWD command.

Affected configurations

NVD

Node

vicftpsvicftpsMatch3.9

CPENameOperatorVersion
vicftps:vicftpsvicftpseq3.9

CPE	Name	Operator	Version
vicftps:vicftps	vicftps	eq	3.9

References

osvdb.org/33227

secunia.com/advisories/24161

vicftps.50webs.com/

www.securityfocus.com/bid/22608

www.vupen.com/english/advisories/2007/0648

exchange.xforce.ibmcloud.com/vulnerabilities/32557

www.exploit-db.com/exploits/3331

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.158 Low

EPSS

Percentile

96.0%

JSON

Related for CVE-2007-1014

securityvulns1 cvelist1 prion1 nvd1