Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1627

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1627
Last Modified 05 Sep 2008 04:41:55
Published 22 Oct 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1627

Summary

Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command.

Vulnerable Systems

Application

  • Code-crafters Ability Server 2.2.5

  • Code-crafters Ability Server 2.3.2

  • Code-crafters Ability Server 2.3.4


References

BID - 11508

SECTRACK - 1012464

SECUNIA - 12941

MLIST - [0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T

XF - ability-appe-bo(18405)

OSVDB - 12347


Last Updated: 27 May 2016 10:39:06