5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
73.8%
The samiftp.dll library in Sami FTP Server 1.1.3 allows local users to cause a denial of service (pmsystem.exe crash) by issuing (1) a CD command with a tilde (~) character or dot dot (/…/) or (2) a GET command for an unavailable file.
CPE | Name | Operator | Version |
---|---|---|---|
karjasoft:sami_ftp_server | karjasoft sami ftp server | eq | 1.1.3 |