9.3
CVE-2007-2318
- EPSS 4.5%
- Veröffentlicht 26.04.2007 21:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple format string vulnerabilities in FileZilla before 2.2.32 allow remote attackers to execute arbitrary code via format string specifiers in (1) FTP server responses or (2) data sent by an FTP server. NOTE: some of these details are obtained from third party information.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.5% | 0.903 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://osvdb.org/34436
http://osvdb.org/34437
http://secunia.com/advisories/24894
http://sourceforge.net/project/shownotes.php?release_id=501534&group_id=21558
http://www.securityfocus.com/bid/23506