Lucene search
HistoryMay 10, 2005 - 4:00 a.m.
CVE-2004-1885
ipswitch
ws_ftp server
remote authenticated users
arbitrary programs
system
cve-2004-1885
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.387 Low
EPSS
Percentile
97.3%
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe.
Affected configurations
Node
progressws_ftp_serverMatch4.0.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| progress:ws_ftp_server | progress ws ftp server | eq | 4.0.2 |
Related
cvelist
cvelist
CVE-2004-1885
2005-05-10 04:00:00
checkpoint_advisories
checkpoint_advisories
WS-FTP Command Execution (CVE-2004-1885) - Ver2
2018-06-28 00:00:00
nvd
nvd
CVE-2004-1885
2004-12-31 05:00:00
nessus
nessus
WS_FTP Server Multiple Vulnerabilities (OF, DoS, Cmd Exec)
2004-09-01 00:00:00
openvas
openvas
WS_FTP Server Multiple Vulnerabilities (Nov 2005)
2005-11-03 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
High
0.387 Low
EPSS
Percentile
97.3%
Related for CVE-2004-1885