Vulnerability Description
Multiple format string vulnerabilities in the FTP service in 3Com 3CDaemon 2.0 revision 10 allow remote attackers to cause a denial of service (application crash) via format string specifiers in (1) the username, (2) cd, (3) delete, (4) rename, (5) rmdir, (6) literal, (7) stat, or (8) CWD commands.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 3Com | 3Cdaemon | 2.0 |
References
- http://marc.info/?l=bugtraq&m=110485674622696&w=2
- http://www.securityfocus.com/bid/12155
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18751
- http://marc.info/?l=bugtraq&m=110485674622696&w=2
- http://www.securityfocus.com/bid/12155
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18751
FAQ
What is CVE-2005-0276?
CVE-2005-0276 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple format string vulnerabilities in the FTP service in 3Com 3CDaemon 2.0 revision 10 allow remote attackers to cause a denial of service (application crash) via format string specifiers in (1) t...
How severe is CVE-2005-0276?
CVE-2005-0276 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0276?
Check the references section above for vendor advisories and patch information. Affected products include: 3Com 3Cdaemon.