Published: 31/12/2004 Updated: 11/10/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hostname or username to be inserted into a reply to a STAT command while a file is being transferred.

Vulnerable Product	Search on Vulmon	Subscribe to Product
progress ws ftp server 4.0.2

/* * Ipswitch WS_FTP Server <= 402 ALLO exploit * (c)2004 Hugh Mann hughmann@hotmailcom * * This exploit has been tested with WS_FTP Server 402EVAL, Windows XP SP1 * * NOTE: * - The exploit assumes the user has a total file size limit If the user only has * a max number of files limit you will need to rewrite parts of this exploit for * i ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/358361 http://www.securityfocus.com/bid/9953 http://secunia.com/advisories/11206 http://marc.info/?l=bugtraq&m=108006553222397&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15561 https://nvd.nist.gov https://www.exploit-db.com/exploits/165/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1883

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect