Lucene search

[email protected]NVD:CVE-2009-3364

HistorySep 24, 2009 - 4:30 p.m.

CVE-2009-3364

2009-09-2416:30:02

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.014

Percentile

86.3%

JSON

Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command.

Affected configurations

Nvd

Node

ftpshellftpshellMatch4.1rc2client

VendorProductVersionCPE
ftpshellftpshell4.1cpe:2.3:a:ftpshell:ftpshell:4.1:rc2:client:*:*:*:*:*

Vendor	Product	Version	CPE
ftpshell	ftpshell	4.1	cpe:2.3:a:ftpshell:ftpshell:4.1:rc2:client:::::*

References

secunia.com/advisories/36628

www.exploit-db.com/exploits/9613

www.osvdb.org/57899

www.securityfocus.com/bid/36327

www.vupen.com/english/advisories/2009/2604

exchange.xforce.ibmcloud.com/vulnerabilities/53126

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.014

Percentile

86.3%

JSON

Related for NVD:CVE-2009-3364

exploitdb1 openvas1 prion2 cve2 cvelist2 checkpoint_advisories1 nvd1