ID CVE-2002-0126
Summary Buffer overflow in BlackMoon FTP Server 1.0 through 1.5 allows remote attackers to execute arbitrary code via a long argument to (1) USER, (2) PASS, or (3) CWD.
References
Vulnerable Configurations
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.0
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.0
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.1
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.1
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.2
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.2
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.3
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.3
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.4
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.4
  • cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.5
    cpe:2.3:a:selom_ofori:blackmoon_ftp_server:1.5
CVSS
Base: 7.5 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family FTP
NASL id FTP_OVERFLOW.NASL
description The remote FTP server closes the connection when a command or argument is too long. This is probably due to a buffer overflow and may allow an attacker to execute arbitrary code on the remote host.
last seen 2019-02-21
modified 2018-08-31
plugin id 10084
published 1999-06-22
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10084
title Multiple FTP Server Command Handling Overflow
refmap via4
bid 3884
bugtraq 20020115 BlackMoon FTPd Buffer Overflow Vulnerability
misc http://members.rogers.com/blackmoon2k/pages/news_page.html
xf blackmoon-ftpd-static-bo(7895)
Last major update 10-09-2008 - 20:00
Published 25-03-2002 - 00:00
Back to Top