Lucene search
MitreCVE-2013-4742HistoryAug 09, 2013 - 9:55 p.m.
CVE-2013-4742
2013-08-0921:55:07
CWE-119
mitre
web.nvd.nist.gov
29
cve-2013-4742
buffer overflow
netwin surgeftp
denial of service
arbitrary code execution
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
High
EPSS
0.11
Percentile
95.2%
Buffer overflow in NetWin SurgeFTP before 23d2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string within the authentication request.
Affected configurations
Node
netwinsurgeftpRange≤2.3b1
ORnetwinsurgeftpMatch2.0c
ORnetwinsurgeftpMatch2.0d
ORnetwinsurgeftpMatch2.0e
ORnetwinsurgeftpMatch2.0f
ORnetwinsurgeftpMatch2.2k1
ORnetwinsurgeftpMatch2.2k3
ORnetwinsurgeftpMatch2.2m1
ORnetwinsurgeftpMatch2.3a1
ORnetwinsurgeftpMatch2.3a2
ORnetwinsurgeftpMatch2.3a6
ORnetwinsurgeftpMatch2.3a7
ORnetwinsurgeftpMatch2.3a8
ORnetwinsurgeftpMatch2.3a9
ORnetwinsurgeftpMatch2.3a10
ORnetwinsurgeftpMatch2.3a12
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netwin | surgeftp | * | cpe:2.3:a:netwin:surgeftp:*:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.0c | cpe:2.3:a:netwin:surgeftp:2.0c:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.0d | cpe:2.3:a:netwin:surgeftp:2.0d:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.0e | cpe:2.3:a:netwin:surgeftp:2.0e:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.0f | cpe:2.3:a:netwin:surgeftp:2.0f:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.2k1 | cpe:2.3:a:netwin:surgeftp:2.2k1:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.2k3 | cpe:2.3:a:netwin:surgeftp:2.2k3:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.2m1 | cpe:2.3:a:netwin:surgeftp:2.2m1:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.3a1 | cpe:2.3:a:netwin:surgeftp:2.3a1:*:*:*:*:*:*:* |
| netwin | surgeftp | 2.3a2 | cpe:2.3:a:netwin:surgeftp:2.3a2:*:*:*:*:*:*:* |
Related
prion
prion
Buffer overflow
2013-08-09 21:55:00
securityvulns
securityvulns
SurgeFtp Server BufferOverflow Vulnerability
2013-07-29 00:00:00
SurgeFTP buffer overflow
2013-07-29 00:00:00
cvelist
cvelist
CVE-2013-4742
2013-08-09 21:00:00
nvd
nvd
CVE-2013-4742
2013-08-09 21:55:07
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
High
EPSS
0.11
Percentile
95.2%
Related for CVE-2013-4742