Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2373

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-2373
Last Modified 05 Sep 2008 04:51:35
Published 26 Jul 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2373

Summary

Buffer overflow in SlimFTPd 3.15 and 3.16 allows remote authenticated users to execute arbitrary code via a long directory name to (1) LIST, (2) DELE or (3) RNFR commands.

Vulnerable Systems

Application

  • Whitsoft Development Slimftpd 3.15

  • Whitsoft Development Slimftpd 3.16


References

CONFIRM - http://www.whitsoftdev.com/slimftpd/

BUGTRAQ - 20050721 Arbitrary code execution in SlimFTPd v3.16

SECTRACK - 1014542

SECUNIA - 16177


Last Updated: 27 May 2016 10:40:30