CVE-2011-5166 in KnFTPinfo

Zusammenfassung

von MITRE

Multiple stack-based buffer overflows in KnFTP 1.0.0 allow remote attackers to execute arbitrary code via a long string to the (1) USER, (2) PASS, (3) REIN, (4) QUIT, (5) PORT, (6) PASV, (7) TYPE, (8) STRU, (9) MODE, (10) RETR, (11) STOR, (12) APPE, (13) ALLO, (14) REST, (15) RNFR, (16) RNTO, (17) ABOR, (18) DELE, (19) CWD, (20) LIST, (21) NLST, (22) SITE, (23) STST, (24) HELP, (25) NOOP, (26) MKD, (27) RMD, (28) PWD, (29) CDUP, (30) STOU, (31) SNMT, (32) SYST, and (33) XPWD commands.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

15.09.2012

Veröffentlichung

15.09.2012

Moderieren

akzeptiert

Eintrag

VDB-62255

CPE

bereit

CWE

CWE-119 (bestätigt)

Exploit

Download

CVSS

7.5 (NVD)

EPSS

0.06481

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-5166
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-5166
CVE Details	https://www.cvedetails.com/cve/CVE-2011-5166/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!