CVE-2004-2318

2005-08-1604:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

High

EPSS

0.019

Percentile

88.8%

JSON

The administrative interface (surgeftpmgr.cgi) for SurgeFTP Server 1.0b through 2.2k1 allows remote attackers to cause a temporary denial of service (crash) via requests with two percent (%) signs in the CMD parameter.

References

members.lycos.co.uk/r34ct/main/surge_FTP/surge-ftp.txt

securitytracker.com/id?1008898

www.osvdb.org/3788

www.secunia.com/advisories/10758/

www.securityfocus.com/bid/9554

exchange.xforce.ibmcloud.com/vulnerabilities/15001