Vulnerability Description
Multiple heap-based buffer overflows in rumpusd in Rumpus 5.1 and earlier (1) allow remote authenticated users to execute arbitrary code via a long LIST command and other unspecified requests to the FTP service, and (2) allow remote attackers to execute arbitrary code via unspecified requests to the HTTP service.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Maxum Development Corporation | Rumpus Ftp Server | <= 5.1 |
References
- http://osvdb.org/32689
- http://osvdb.org/32692
- http://projects.info-pull.com/moab/MOAB-18-01-2007.htmlExploitVendor Advisory
- http://secunia.com/advisories/23842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31594
- http://osvdb.org/32689
- http://osvdb.org/32692
- http://projects.info-pull.com/moab/MOAB-18-01-2007.htmlExploitVendor Advisory
- http://secunia.com/advisories/23842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31594
FAQ
What is CVE-2007-0019?
CVE-2007-0019 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Multiple heap-based buffer overflows in rumpusd in Rumpus 5.1 and earlier (1) allow remote authenticated users to execute arbitrary code via a long LIST command and other unspecified requests to the F...
How severe is CVE-2007-0019?
CVE-2007-0019 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0019?
Check the references section above for vendor advisories and patch information. Affected products include: Maxum Development Corporation Rumpus Ftp Server.