CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
69.3%
Buffer overflow in TrollFTPD 1.26 and earlier allows local users to execute arbitrary code by creating a series of deeply nested directories with long names, then running the ls -R (recursive) command.
Vendor | Product | Version | CPE |
---|---|---|---|
trolltech | trollftpd | 1.17 | cpe:2.3:a:trolltech:trollftpd:1.17:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.18 | cpe:2.3:a:trolltech:trollftpd:1.18:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.19 | cpe:2.3:a:trolltech:trollftpd:1.19:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.20 | cpe:2.3:a:trolltech:trollftpd:1.20:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.21 | cpe:2.3:a:trolltech:trollftpd:1.21:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.22 | cpe:2.3:a:trolltech:trollftpd:1.22:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.23 | cpe:2.3:a:trolltech:trollftpd:1.23:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.24 | cpe:2.3:a:trolltech:trollftpd:1.24:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.25 | cpe:2.3:a:trolltech:trollftpd:1.25:*:*:*:*:*:*:* |
trolltech | trollftpd | 1.26 | cpe:2.3:a:trolltech:trollftpd:1.26:*:*:*:*:*:*:* |