Lucene search
MitreCVE-2012-5002HistorySep 19, 2012 - 7:55 p.m.
CVE-2012-5002
2012-09-1919:55:09
CWE-119
mitre
web.nvd.nist.gov
23
cve-2012-5002
buffer overflow
sr10 ftp server
remote code execution
security vulnerability
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
High
EPSS
0.681
Percentile
98.0%
Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command.
Affected configurations
Node
ricohdl-10Match4.5.0.1
ORricohsr10_ftp_serverMatch1.1.0.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ricoh | dl-10 | 4.5.0.1 | cpe:2.3:a:ricoh:dl-10:4.5.0.1:*:*:*:*:*:*:* |
| ricoh | sr10_ftp_server | 1.1.0.6 | cpe:2.3:h:ricoh:sr10_ftp_server:1.1.0.6:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2012-5002
2012-09-19 19:55:09
exploitdb
exploitdb
cvelist
cvelist
CVE-2012-5002
2012-09-19 19:00:00
metasploit
metasploit
Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow
2012-03-22 20:30:00
prion
prion
Stack overflow
2012-09-19 19:55:00
openvas
openvas
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
High
EPSS
0.681
Percentile
98.0%
Related for CVE-2012-5002