Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0702

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0702
Last Modified 10 Sep 2008 03:08:40
Published 20 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0702

Summary

Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long (1) username, (2) password, or (3) PASV command.

Vulnerable Systems

Application

  • Grant Averett Ceberus Ftp Server 1.0

  • Grant Averett Ceberus Ftp Server 1.01

  • Grant Averett Ceberus Ftp Server 1.1

  • Grant Averett Ceberus Ftp Server 1.2

  • Grant Averett Ceberus Ftp Server 1.22

  • Grant Averett Ceberus Ftp Server 1.3

  • Grant Averett Ceberus Ftp Server 1.5


References

XF - cerberus-ftp-bo(6728)

BID - 2901

BUGTRAQ - 20010621 Cerberus FTP Server 1.x Remote DoS attack Vulnerability

BUGTRAQ - 20010704 CesarFTPd, Cerberus FTPd


Last Updated: 27 May 2016 10:36:21