Lucene search

MitreCVE-2007-0201

HistoryJan 11, 2007 - 11:28 a.m.

CVE-2007-0201

2007-01-1111:28:00

mitre

web.nvd.nist.gov

cve-2007-0201

buffer overflow

ftp-gw

fwtk

remote code execution

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.056

Percentile

93.5%

JSON

Buffer overflow in the cmd_usr function in ftp-gw in TIS Internet Firewall Toolkit (FWTK) allows remote attackers to execute arbitrary code via a long destination hostname (dest).

Affected configurations

Nvd

Node

tisinternet_firewall_toolkitRange≤2.1

VendorProductVersionCPE
tisinternet_firewall_toolkit*cpe:2.3:a:tis:internet_firewall_toolkit:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tis	internet_firewall_toolkit	*	cpe:2.3:a:tis:internet_firewall_toolkit::::::::

References

osvdb.org/35967

securitytracker.com/id?1017481

www.ranum.com/security/computer_security/editorials/codetools/

www.securityfocus.com/bid/21960

exchange.xforce.ibmcloud.com/vulnerabilities/31363

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.056

Percentile

93.5%

JSON

Related for CVE-2007-0201