Lucene search

[email protected]NVD:CVE-2007-2318

HistoryApr 26, 2007 - 9:19 p.m.

CVE-2007-2318

2007-04-2621:19:00

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.033

Percentile

91.4%

JSON

Multiple format string vulnerabilities in FileZilla before 2.2.32 allow remote attackers to execute arbitrary code via format string specifiers in (1) FTP server responses or (2) data sent by an FTP server. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

filezillafilezillaRange≤2.2.31

VendorProductVersionCPE
filezillafilezilla*cpe:2.3:a:filezilla:filezilla:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
filezilla	filezilla	*	cpe:2.3:a:filezilla:filezilla::::::::

References

osvdb.org/34436

osvdb.org/34437

secunia.com/advisories/24894

sourceforge.net/project/shownotes.php?release_id=501534&group_id=21558

www.securityfocus.com/bid/23506

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.033

Percentile

91.4%

JSON

Related for NVD:CVE-2007-2318

debiancve1 cve1 prion1 ubuntucve1 nessus1 cvelist1