CVE-2005-0312
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/01/2005
Last modified:
03/04/2025
Description
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability.
Impact
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:war_ftp_daemon:war_ftp_daemon:1.8:*:*:*:*:*:*:* | ||
| cpe:2.3:a:war_ftp_daemon:war_ftp_daemon:1.82_rc9:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=bugtraq&m=110687202332039&w=2
- http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
- http://www.securityfocus.com/bid/12384
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19129
- http://marc.info/?l=bugtraq&m=110687202332039&w=2
- http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
- http://www.securityfocus.com/bid/12384
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19129