Vulnerability Description
Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with a long string or (2) a globbing ("*") character followed by a long string.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Crob | Crob Ftp | 3.6.1 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034426.htmlExploit
- http://secunia.com/advisories/15585
- http://security.lss.hr/index.php?page=details&ID=LSS-2005-06-06
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034426.htmlExploit
- http://secunia.com/advisories/15585
- http://security.lss.hr/index.php?page=details&ID=LSS-2005-06-06
FAQ
What is CVE-2005-1873?
CVE-2005-1873 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with...
How severe is CVE-2005-1873?
CVE-2005-1873 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1873?
Check the references section above for vendor advisories and patch information. Affected products include: Crob Crob Ftp.