Vulnerability Description
Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ipswitch | Ws Ftp Server | 4.01 |
| Progress | Ws Ftp Server | 3.4 |
References
- http://marc.info/?l=bugtraq&m=106288825902868&w=2
- http://secunia.com/advisories/9671
- http://www.kb.cert.org/vuls/id/219140US Government Resource
- http://www.kb.cert.org/vuls/id/792284US Government Resource
- http://www.securityfocus.com/bid/8542ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13119
- http://marc.info/?l=bugtraq&m=106288825902868&w=2
- http://secunia.com/advisories/9671
- http://www.kb.cert.org/vuls/id/219140US Government Resource
- http://www.kb.cert.org/vuls/id/792284US Government Resource
- http://www.securityfocus.com/bid/8542ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13119
FAQ
What is CVE-2003-0772?
CVE-2003-0772 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.
How severe is CVE-2003-0772?
CVE-2003-0772 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0772?
Check the references section above for vendor advisories and patch information. Affected products include: Ipswitch Ws Ftp Server, Progress Ws Ftp Server.