Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1244

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1244
Last Modified 10 Sep 2008 03:14:09
Published 12 Nov 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1244

Summary

Format string vulnerability in Pablo FTP Server 1.5, 1.3, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format strings in the USER command.

Vulnerable Systems

Application

  • Pablo Software Solutions Pablo Ftp Server 1.0

  • Pablo Software Solutions Pablo Ftp Server 1.2

  • Pablo Software Solutions Pablo Ftp Server 1.3

  • Pablo Software Solutions Pablo Ftp Server 1.5


References

BUGTRAQ - 20021104 iDEFENSE Security Advisory 11.04.02a: Pablo FTP Server DoS Vulnerability

CONFIRM - http://www.pablovandermeer.nl/ftpserver.zip

XF - pablo-ftp-username-dos(10532)

BID - 6099

OSVDB - 4996


Last Updated: 27 May 2016 10:37:15