Lucene search

MitreCVE-2003-0772

HistorySep 22, 2003 - 4:00 a.m.

CVE-2003-0772

2003-09-2204:00:00

mitre

web.nvd.nist.gov

cve-2003-0772

buffer overflows

ws_ftp

denial of service

arbitrary code

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.957

Percentile

99.4%

JSON

Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.

Affected configurations

Nvd

Node

ipswitchws_ftp_serverMatch4.01

progressws_ftp_serverMatch3.4

VendorProductVersionCPE
ipswitchws_ftp_server4.01cpe:2.3:a:ipswitch:ws_ftp_server:4.01:*:*:*:*:*:*:*
progressws_ftp_server3.4cpe:2.3:a:progress:ws_ftp_server:3.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ipswitch	ws_ftp_server	4.01	cpe:2.3:a:ipswitch:ws_ftp_server:4.01:::::::*
progress	ws_ftp_server	3.4	cpe:2.3:a:progress:ws_ftp_server:3.4:::::::*

References

marc.info/?l=bugtraq&m=106288825902868&w=2

secunia.com/advisories/9671

www.kb.cert.org/vuls/id/219140

www.kb.cert.org/vuls/id/792284

www.securityfocus.com/bid/8542

exchange.xforce.ibmcloud.com/vulnerabilities/13119

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.957

Percentile

99.4%

JSON

Related for CVE-2003-0772