Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2418

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-2418
Last Modified 05 Sep 2008 04:44:04
Published 31 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-2418

Summary

Buffer overflow in SlimFTPd 3.15 and earlier allows local users to execute arbitrary code via a long command, such as (1) CWD, (2) STOR, (3) MKD, and (4) STAT.

Vulnerable Systems

Application

  • Whitsoft Development Slimftpd 3.15


References

BID - 11645

OSVDB - 11604

SECTRACK - 1012167

SECUNIA - 13161

XF - slimftpd-multiple-command-bo(18014)

CONFIRM - http://www.whitsoftdev.com/slimftpd/

FULLDISC - 20041110 [Advisory + Exploit] SlimFTPd <= 3.15


Last Updated: 27 May 2016 10:39:28