漏洞信息详情
Code-Crafters Ability Server FTP STOR和APPE参数远程缓冲区溢出漏洞
- CNNVD编号:CNNVD-200410-088
- 危害等级: 高危
- CVE编号: CVE-2004-1627
- 漏洞类型: 缓冲区溢出
- 发布时间: 2004-10-22
- 威胁类型: 远程
- 更新时间: 2005-10-20
- 厂 商: code-crafters
- 漏洞来源: Exploit code was p...
漏洞简介
Ability Server 2.25版本、2.32版本、2.34版本和其他可能的版本存在漏洞。远程攻击者借助超长APPE命令执行任意代码。
漏洞公告
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
参考网址
来源: BID 名称: 11508 链接:http://www.securityfocus.com/bid/11508 来源: SECTRACK 名称: 1012464 链接:http://securitytracker.com/id?1012464 来源: SECUNIA 名称: 12941 链接:http://secunia.com/advisories/12941 来源: MLIST 名称: [0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T 链接:http://lists.virus.org/dw-0day-0412/msg00004.HTML 来源: XF 名称: ability-appe-bo(18405) 链接:http://xforce.iss.net/xforce/xfdb/18405 来源: OSVDB 名称: 12347 链接:http://www.osvdb.org/12347
受影响实体
- Code-Crafters Ability_server:2.3.4
- Code-Crafters Ability_server:2.3.2
- Code-Crafters Ability_server:2.2.5
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论