Lucene search
HistoryMay 02, 2014 - 1:59 a.m.
CVE-2014-1443
core ftp server
cve-2014-1443
remote authentication
sensitive information
vulnerability
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.0%
Core FTP Server 1.2 before build 515 allows remote authenticated users to obtain sensitive information (password for the previous user) via a USER command with a specific length, possibly related to an out-of-bounds read.
Affected configurations
Node
coreftpcore_ftpMatch1.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| coreftp:core_ftp | coreftp core ftp | eq | 1.2 |
Related
cvelist
cvelist
CVE-2014-1443
2014-05-02 01:00:00
seebug
seebug
Core FTP 'USER' ๅฝไปคไฟกๆฏๆณ้ฒๆผๆด
2014-02-24 00:00:00
nvd
nvd
CVE-2014-1443
2014-05-02 01:59:22
prion
prion
Design/Logic Flaw
2014-05-02 01:59:00
packetstorm
packetstorm
Core FTP Server 1.2 DoS / Traversal / Disclosure
2014-02-05 00:00:00
nessus
nessus
Core FTP Server < 1.2 Build 515 Multiple Vulnerabilities
2014-02-24 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.0%
Related for CVE-2014-1443