CVE-2011-5166 in KnFTPinformazioni

Riassunto

di MITRE

Multiple stack-based buffer overflows in KnFTP 1.0.0 allow remote attackers to execute arbitrary code via a long string to the (1) USER, (2) PASS, (3) REIN, (4) QUIT, (5) PORT, (6) PASV, (7) TYPE, (8) STRU, (9) MODE, (10) RETR, (11) STOR, (12) APPE, (13) ALLO, (14) REST, (15) RNFR, (16) RNTO, (17) ABOR, (18) DELE, (19) CWD, (20) LIST, (21) NLST, (22) SITE, (23) STST, (24) HELP, (25) NOOP, (26) MKD, (27) RMD, (28) PWD, (29) CDUP, (30) STOU, (31) SNMT, (32) SYST, and (33) XPWD commands.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

15/09/2012

Divulgazione

15/09/2012

Moderazione

accettato

Voce

VDB-62255

CPE

pronto

CWE

CWE-119 (confermato)

Sfruttamento

Scaricare

CVSS

7.5 (NVD)

EPSS

0.06481

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-5166
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-5166
CVE Details	https://www.cvedetails.com/cve/CVE-2011-5166/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!