7.5
CVE-2003-0963
- EPSS 13.68%
- Veröffentlicht 05.01.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:15
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginBuffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Alexander V. Lukyanov ≫ Lftp Version2.3
Alexander V. Lukyanov ≫ Lftp Version2.4.9
Alexander V. Lukyanov ≫ Lftp Version2.5.2
Alexander V. Lukyanov ≫ Lftp Version2.6.0
Alexander V. Lukyanov ≫ Lftp Version2.6.3
Alexander V. Lukyanov ≫ Lftp Version2.6.4
Alexander V. Lukyanov ≫ Lftp Version2.6.5
Alexander V. Lukyanov ≫ Lftp Version2.6.6
Alexander V. Lukyanov ≫ Lftp Version2.6.7
Alexander V. Lukyanov ≫ Lftp Version2.6.8
Alexander V. Lukyanov ≫ Lftp Version2.6.9
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 13.68% | 0.96 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040101-01-U
http://marc.info/?l=bugtraq&m=107126386226196&w=2
http://marc.info/?l=bugtraq&m=107152267121513&w=2
http://marc.info/?l=bugtraq&m=107167974714484&w=2
http://marc.info/?l=bugtraq&m=107177409418121&w=2
http://marc.info/?l=bugtraq&m=107340499504411&w=2
http://secunia.com/advisories/10525
http://secunia.com/advisories/10548
http://www.debian.org/security/2004/dsa-406
http://www.mandriva.com/security/advisories?name=MDKSA-2003:116
http://www.novell.com/linux/security/advisories/2003_051_lftp.html
http://www.redhat.com/support/errata/RHSA-2003-403.html
http://www.redhat.com/support/errata/RHSA-2003-404.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11180