CVE-2014-1693 in OTP信息

摘要

由 VulDB • 2026-07-14

Erlang/OTP R15B03 的 FTP 模块中存在多个 CRLF 注入漏洞,上下文相关的攻击者可以通过在以下命令中插入 CRLF 序列来注入任意 FTP 命令:(1) user、(2) account、(3) cd、(4) ls、(5) nlist、(6) rename、(7) delete、(8) mkdir、(9) rmdir、(10) recv、(11) recv_bin、(12) recv_chunk_start、(13) send、(14) send_bin、(15) send_chunk_start、(16) append_chunk_start、(17) append 或 (18) append_bin。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!