CVE-2012-5002

2012-09-1919:00:00

mitre

www.cve.org

8 High

AI Score

Confidence

High

0.614 Medium

EPSS

Percentile

97.8%

JSON

Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command.

References

secunia.com/advisories/47912

security.inshell.net/advisory/5

www.osvdb.org/79691

www.securityfocus.com/bid/52235

exchange.xforce.ibmcloud.com/vulnerabilities/73591