Lucene search
MitreCVE-2007-1580HistoryMar 21, 2007 - 11:19 p.m.
CVE-2007-1580
2007-03-2123:19:00
CWE-119
mitre
web.nvd.nist.gov
36
ftpdmin
0.96
denial of service
remote attackers
list command
windows drive letter
cve-2007-1580
CVSS2
6.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:N/I:N/A:C
AI Score
7.2
Confidence
High
EPSS
0.008
Percentile
81.2%
FTPDMIN 0.96 allows remote attackers to cause a denial of service (daemon crash) via a LIST command for a Windows drive letter, as demonstrated using “//A:”. NOTE: this has been reported as a buffer overflow by some sources, but there is not a long argument.
Affected configurations
Node
ftpdminftpdminMatch0.96
Related
exploitdb
exploitdb
FTPDMIN 0.96 - 'LIST' Remote Denial of Service
2007-03-20 00:00:00
cvelist
cvelist
CVE-2007-1580
2007-03-21 23:00:00
nvd
nvd
CVE-2007-1580
2007-03-21 23:19:00
securityvulns
securityvulns
FTPDMIN special DOS device access
2007-03-29 00:00:00
prion
prion
Buffer overflow
2007-03-21 23:19:00
CVSS2
6.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:N/I:N/A:C
AI Score
7.2
Confidence
High
EPSS
0.008
Percentile
81.2%
Related for CVE-2007-1580