Lucene search

[email protected]NVD:CVE-2005-1873

HistoryJun 09, 2005 - 4:00 a.m.

CVE-2005-1873

2005-06-0904:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.03

Percentile

90.9%

JSON

Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with a long string or (2) a globbing (“*”) character followed by a long string.

Affected configurations

Nvd

Node

crobcrob_ftpMatch3.6.1

VendorProductVersionCPE
crobcrob_ftp3.6.1cpe:2.3:a:crob:crob_ftp:3.6.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
crob	crob_ftp	3.6.1	cpe:2.3:a:crob:crob_ftp:3.6.1:::::::*

References

lists.grok.org.uk/pipermail/full-disclosure/2005-June/034426.html

secunia.com/advisories/15585

security.lss.hr/index.php?page=details&ID=LSS-2005-06-06

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.03

Percentile

90.9%

JSON

Related for NVD:CVE-2005-1873

cve1 cvelist1 exploitdb1 nessus1