Lucene search

[email protected]CVE-2005-0696

HistoryMar 08, 2005 - 5:00 a.m.

CVE-2005-0696

2005-03-0805:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0696

argosoft ftp server

buffer overflow

remote code execution

authentication

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.101 Low

EPSS

Percentile

94.9%

JSON

Buffer overflow in ArGoSoft FTP Server 1.4.2.8 allows remote authenticated users to execute arbitrary code via a long DELE command. NOTE: this issue was later reported to also affect 1.4.3.5.

Affected configurations

NVD

Node

argosoftftp_serverMatch1.4.2.8

argosoftftp_serverMatch1.4.2.29

argosoftftp_serverMatch1.4.3.5

CPENameOperatorVersion
argosoft:ftp_serverargosoft ftp servereq1.4.2.8
argosoft:ftp_serverargosoft ftp servereq1.4.2.29
argosoft:ftp_serverargosoft ftp servereq1.4.3.5

CPE	Name	Operator	Version
argosoft:ftp_server	argosoft ftp server	eq	1.4.2.8
argosoft:ftp_server	argosoft ftp server	eq	1.4.2.29
argosoft:ftp_server	argosoft ftp server	eq	1.4.3.5

References

lists.grok.org.uk/pipermail/full-disclosure/2006-February/042523.html

secunia.com/advisories/14526

securityreason.com/securityalert/494

securitytracker.com/id?1015681

www.securityfocus.com/archive/1/392653

www.securityfocus.com/archive/1/426081/100/0/threaded

www.securityfocus.com/bid/12755

www.securinfos.info/english/security-advisories-alerts/20060225_ArGoSoft.FTP.Server_Heap.Overflow.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.101 Low

EPSS

Percentile

94.9%

JSON

Related for CVE-2005-0696

nessus1 cvelist1 nvd1 checkpoint_advisories2