CVE-2005-0850

EPSS 1.04%
Veröffentlicht 02.05.2005 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

FileZilla FTP server before 0.9.6 allows remote attackers to cause a denial of service via a request for a filename containing an MS-DOS device name such as CON, NUL, COM1, LPT1, and others.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Filezilla-project ≫ Filezilla Server Version < 0.9.6

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.04%	0.754

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://sourceforge.net/project/shownotes.php?group_id=21558&release_id=314473

Third Party Advisory

Product

http://www.securityfocus.com/bid/12865

Patch

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2005-0850

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0850

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0850

EUVD