Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2961

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2961
Last Modified 10 Sep 2008 03:44:21
Published 05 Oct 2005 03:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2961

Summary

Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an tag.

Vulnerable Systems

Application

  • Prozilla Download Accelerator 1.3.7.4


References

DEBIAN - DSA-834

XF - prozilla-ftpsearch-bo(22491)

SECUNIA - 17021

BID - 14993

SECUNIA - 17035


Last Updated: 27 May 2016 10:40:42