Published: 05/10/2005 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an <A> tag.

Vulnerable Product	Search on Vulmon	Subscribe to Product
prozilla prozilla download accelerator 1.3.7.4

Tavis Ormandy discovered a buffer overflow in prozilla, a multi-threaded download accelerator, which may be exploited to execute arbitrary code For the old stable distribution (woody) this problem has been fixed in version 136-3woody3 The stable distribution (sarge) does not contain prozilla packages The unstable distribution (sid) does not co ...

#include <stdioh> #include <stringh> #include <stdlibh> #define OVERFLOW (1<<10)+32 #define SLEDSIZ (1<<10) #define RETADDR 0x806977a+SLEDSIZ/2 #define OUTPUT "AdvResultsasp" /* * prozilla bug, found while auditing for gentoo bug #70090 * -taviso@gentooorg */ /* execve() /bin/id */ unsigned char shellcode[] = ...

NVD-CWE-Other http://www.debian.org/security/2005/dsa-834 http://secunia.com/advisories/17021/http://www.securityfocus.com/bid/14993 http://secunia.com/advisories/17035 https://exchange.xforce.ibmcloud.com/vulnerabilities/22491 https://nvd.nist.gov https://www.debian.org/security/./dsa-834 https://www.exploit-db.com/exploits/1238/

CVE-2005-2961

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect