CVE-2008-7016 in Luke Mewburn tnftpdinfo

Summary

tnftpd before 20080929 splits large command strings into multiple commands, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks via unknown vectors, probably involving a crafted ftp:// link to a tnftpd server.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

08/21/2009

Disclosure

08/21/2009

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
49565	Luke Mewburn tnftpd cross-site request forgery	352	Not defined	Official fix	CVE-2008-7016

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!