Lucene search

[email protected]CVE-2007-3548

HistoryJul 03, 2007 - 9:30 p.m.

CVE-2007-3548

2007-07-0321:30:00

[email protected]

web.nvd.nist.gov

cve-2007-3548

w3filer 2.1.3

buffer overflow

denial of service

ftp

remote code execution

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

8.1 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.2%

JSON

Stack-based buffer overflow in W3Filer 2.1.3 allows remote FTP servers to cause a denial of service (application hang or crash) and possibly execute arbitrary code by sending a large banner to a client that is sending a file.

Affected configurations

NVD

Node

w3filerw3filerMatch2.1.3

CPENameOperatorVersion
w3filer:w3filerw3filereq2.1.3

CPE	Name	Operator	Version
w3filer:w3filer	w3filer	eq	2.1.3

References

osvdb.org/45745

www.securityfocus.com/bid/24709

exchange.xforce.ibmcloud.com/vulnerabilities/35184

www.exploit-db.com/exploits/4126

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

8.1 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.2%

JSON

Related for CVE-2007-3548

nvd1 cvelist1 prion1