Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4588

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4588
Last Modified 29 Jan 2009 01:56:50
Published 15 Oct 2008 06:45:31
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4588

Summary

Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command.

Vulnerable Systems

Application

  • Etype Eserv 3.0

  • Etype Eserv 3.25

  • Etype Eserv 3.26


References

XF - eservftp-abor-bo(45864)

MISC - http://www.zeroscience.org/codes/eserv_bof.txt

BID - 31753

MILW0RM - 6752

SREASON - 4415


Last Updated: 27 May 2016 10:48:33