Lucene search

MitreCVE-2004-2728

HistoryOct 09, 2007 - 10:00 a.m.

CVE-2004-2728

2007-10-0910:00:00

CWE-119

mitre

web.nvd.nist.gov

cve-2004-2728

buffer overflow

ftp server

hummingbird connectivity 7.1

hummingbird connectivity 9.0

denial of service

application crash

xcwd command

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON

Buffer overflow in the FTP server of Hummingbird Connectivity 7.1 and 9.0 allows remote, authenticated users to cause a denial of service (application crash) via a long argument to the XCWD command.

Affected configurations

Nvd

Node

hummingbirdconnectivityMatch7.1

hummingbirdconnectivityMatch9.0

VendorProductVersionCPE
hummingbirdconnectivity7.1cpe:2.3:a:hummingbird:connectivity:7.1:*:*:*:*:*:*:*
hummingbirdconnectivity9.0cpe:2.3:a:hummingbird:connectivity:9.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hummingbird	connectivity	7.1	cpe:2.3:a:hummingbird:connectivity:7.1:::::::*
hummingbird	connectivity	9.0	cpe:2.3:a:hummingbird:connectivity:9.0:::::::*

References

secunia.com/advisories/12984

securitytracker.com/id?1011942

www.osvdb.org/11133

www.securityfocus.com/bid/11542

www.uniras.gov.uk/vuls/2004/841713/index.htm

exchange.xforce.ibmcloud.com/vulnerabilities/17855

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.01

Percentile

83.6%

JSON

Related for CVE-2004-2728