Lucene search
MitreCVE-2009-3483HistorySep 30, 2009 - 3:30 p.m.
CVE-2009-3483
2009-09-3015:30:00
CWE-119
mitre
web.nvd.nist.gov
29
cve-2009-3483
buffer overflow
globalscape cuteftp
remote code execution
memory corruption
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
High
EPSS
0.017
Percentile
88.0%
Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.
Affected configurations
Node
globalscapecuteftpMatch8.3.3home
ORglobalscapecuteftpMatch8.3.3lite
ORglobalscapecuteftpMatch8.3.3pro
ORglobalscapecuteftpMatch8.3.3.0054home
ORglobalscapecuteftpMatch8.3.3.0054lite
ORglobalscapecuteftpMatch8.3.3.0054pro
| Vendor | Product | Version | CPE |
|---|---|---|---|
| globalscape | cuteftp | 8.3.3 | cpe:2.3:a:globalscape:cuteftp:8.3.3:*:home:*:*:*:*:* |
| globalscape | cuteftp | 8.3.3 | cpe:2.3:a:globalscape:cuteftp:8.3.3:*:lite:*:*:*:*:* |
| globalscape | cuteftp | 8.3.3 | cpe:2.3:a:globalscape:cuteftp:8.3.3:*:pro:*:*:*:*:* |
| globalscape | cuteftp | 8.3.3.0054 | cpe:2.3:a:globalscape:cuteftp:8.3.3.0054:*:home:*:*:*:*:* |
| globalscape | cuteftp | 8.3.3.0054 | cpe:2.3:a:globalscape:cuteftp:8.3.3.0054:*:lite:*:*:*:*:* |
| globalscape | cuteftp | 8.3.3.0054 | cpe:2.3:a:globalscape:cuteftp:8.3.3.0054:*:pro:*:*:*:*:* |
Related
nvd
nvd
CVE-2009-3483
2009-09-30 15:30:00
kaspersky
kaspersky
KLA10131 DoS vulnerability in CuteFTP
2009-09-30 00:00:00
prion
prion
Heap overflow
2009-09-30 15:30:00
cvelist
cvelist
CVE-2009-3483
2009-09-30 15:00:00
openvas
openvas
CuteFTP Heap Based Buffer Overflow Vulnerability
2009-10-20 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
High
EPSS
0.017
Percentile
88.0%
Related for CVE-2009-3483