10
CVSSv2

CVE-2004-1118

Published: 10/01/2005 Updated: 11/07/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Buffer overflow in the WodFtpDLX.ocx (WeOnlyDo!) ActiveX component prior to 2.3.2.97, as used by CoffeeCup Direct FTP 6.2.0.62 and CoffeeCup Free FTP 3.0.0.10, and possibly other applications, allows remote attackers to execute arbitrary code via a long filename.

Affected Products

Vendor Product Versions
WeonlydoWodftpdlx Activex Component*, 2.1.1 8

Exploits

/************************************************************************************* CoffeeCup FTP Clients Buffer Overflow Vulnerability Exploit created by Komrade e-mail: unsecure(at)altervista(dot)org web: unsecurealtervistaorg Tested on: CoffeeCup Direct FTP 62062 CoffeeCup Free FTP 30010 on a Window ...
/************************************************************************************ WodFtpDLX Client ActiveX Control Buffer Overflow Crash Exploit created by Komrade e-mail: unsecure(at)altervista(dot)org web: unsecurealtervistaorg Tested on WodFtpDLXocx versions 23290 - 2300 - 2201 on a Windows XP Profes ...