Published: 04/03/2018 Updated: 07/03/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

SEGGER FTP Server for Windows prior to 3.22a allows remote malicious users to cause a denial of service (daemon crash) via an invalid LIST, STOR, or RETR command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
segger embos\\/ip_ftp_server 3.22

[+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinxaltervistaorg [+] Source: hyp3rlinxaltervistaorg/advisories/SEGGER-embOS-FTP-SERVER-v322-FTP-COMMANDS-DENIAL-OF-SERVICEtxt [+] ISR: Apparition Security Vendor: ============= wwwseggercom Product: =========== embOS/IP FTP Server v322 Vulnerability Type: ...

Segger embOS/IP FTP Server version 322 suffers from a denial of service vulnerability ...

simple Python exploit using CVE-2018-7449 on embOS/IP FTP Server v3.22

CVE-2018-7449 1 Introduction My tool is written in Python and exploits the CVE-2018-7449 vulnerability to execute a series of commands that will crash the ftp daemon *** DISCLAIMER!!! *** Please note that the use of hacking tools without authorization is illegal and could result in legal problems Therefore, it is important to use this tool only for testing purposes on

CWE-20 https://www.exploit-db.com/exploits/44221/http://hyp3rlinx.altervista.org/advisories/SEGGER-embOS-FTP-SERVER-v3.22-FTP-COMMANDS-DENIAL-OF-SERVICE.txt https://nvd.nist.gov https://github.com/antogit-sys/CVE-2018-7449 https://www.exploit-db.com/exploits/44221/

CVE-2018-7449

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect