Lucene search

[email protected]CVE-2007-2010

HistoryApr 12, 2007 - 7:19 p.m.

CVE-2007-2010

2007-04-1219:19:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-2010

bftpd

vulnerability

denial of service

6.5 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

80.6%

JSON

Double free vulnerability in bftpd before 1.8 allows remote authenticated users to cause a denial of service (daemon crash) via a (1) get or (2) mget command.

CPENameOperatorVersion
bftpd:bftpdbftpdle1.7.2

CPE	Name	Operator	Version
bftpd:bftpd	bftpd	le	1.7.2

References

bftpd.sourceforge.net/

bftpd.sourceforge.net/downloads/CHANGELOG

osvdb.org/34889

secunia.com/advisories/24864

www.securityfocus.com/bid/23406

www.vupen.com/english/advisories/2007/1347

exchange.xforce.ibmcloud.com/vulnerabilities/33594

6.5 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.007 Low

EPSS

Percentile

80.6%

JSON

Related for CVE-2007-2010

securityvulns1 prion1 malwarebytes1