CVE-2000-0856 - Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibl

CVE-2000-0856

Summary

Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands via a long GET request.

References

http://archives.neohapsis.com/archives/bugtraq/2000-08/0408.html
http://www.securityfocus.com/bid/1638

Vulnerable Configurations

cpe:2.3:a:xs4all_data:xs4all_data_sunftp:1.0_build_9:*:*:*:*:*:*:*
cpe:2.3:a:xs4all_data:xs4all_data_sunftp:1.0_build_9:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 05-09-2008 - 20:22)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	1638
bugtraq	20000901 [EXPL] SunFTP vulnerable to two Denial-of-Service attacks (long buffer, half-open)

Last major update

05-09-2008 - 20:22

Published

14-11-2000 - 05:00

Last modified

05-09-2008 - 20:22