Lucene search

VulDBCVELIST:CVE-2024-0731

HistoryJan 19, 2024 - 7:31 p.m.

CVE-2024-0731 PCMan FTP Server PUT Command denial of service

2024-01-1919:31:04

CWE-404

VulDB

www.cve.org

vulnerability

pcman ftp server

put command

denial of service

remote exploit

vdb-251554

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

0.0005 Low

EPSS

Percentile

18.3%

JSON

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as problematic. This vulnerability affects unknown code of the component PUT Command Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-251554 is the identifier assigned to this vulnerability.

CNA Affected

[
  {
    "vendor": "PCMan",
    "product": "FTP Server",
    "versions": [
      {
        "version": "2.0.7",
        "status": "affected"
      }
    ],
    "modules": [
      "PUT Command Handler"
    ]
  }
]

References

fitoxs.com/vuldb/01-PCMan%20v2.0.7-exploit.txt

vuldb.com/?ctiid.251554

vuldb.com/?id.251554

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

0.0005 Low

EPSS

Percentile

18.3%

JSON

Related for CVELIST:CVE-2024-0731