Lucene search

SAINT CorporationSAINT:C03BC1FDBA6091120E241C69D6CB81CF

HistoryMar 11, 2015 - 12:00 a.m.

PCMan FTP Server MKD buffer overflow

2015-03-1100:00:00

SAINT Corporation

download.saintcorporation.com

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.77 High

EPSS

Percentile

98.2%

JSON

Added: 03/11/2015
CVE: CVE-2013-4730
BID: 60837
OSVDB: 94624

Background

PCMan’s FTP Server is a free FTP server for Windows.

Problem

A buffer overflow vulnerability in PCMan’s FTP Server allows remote attackers to execute arbitrary commands.

Resolution

There is no known fix for this vulnerability. Use a different FTP server, or block access to port 21 at the firewall.

References

<http://osvdb.org/show/osvdb/94624>

Limitations

Exploit works on PCMan’s FTP Server 2.0.7 on Windows XP SP3.

Platforms

Windows XP

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.77 High

EPSS

Percentile

98.2%

JSON

Related for SAINT:C03BC1FDBA6091120E241C69D6CB81CF