Lucene search

[email protected]CVE-2007-3768

HistoryJul 15, 2007 - 9:30 p.m.

CVE-2007-3768

2007-07-1521:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

surgeftp

ftp server

denial of service

cve-2007-3768

nvd

7.3 High

AI Score

Confidence

High

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:P/A:C

0.009 Low

EPSS

Percentile

82.5%

JSON

The mirror mechanism in SurgeFTP 2.3a1 allows user-assisted, remote FTP servers to cause a denial of service (restart) via a malformed response to a PASV command.

CPENameOperatorVersion
netwin:surgeftpnetwin surgeftple2.3a1

CPE	Name	Operator	Version
netwin:surgeftp	netwin surgeftp	le	2.3a1

References

lists.grok.org.uk/pipermail/full-disclosure/attachments/20070710/98374694/attachment-0030.txt

marc.info/?l=full-disclosure&m=118409539009277&w=2

osvdb.org/37909

secunia.com/advisories/26061

securityreason.com/securityalert/2883

www.vupen.com/english/advisories/2007/2528

exchange.xforce.ibmcloud.com/vulnerabilities/35376

7.3 High

AI Score

Confidence

High

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:P/A:C

0.009 Low

EPSS

Percentile

82.5%

JSON

Related for CVE-2007-3768

prion1 cvelist1