Vulnerability Description
FTPService.exe in Blackmoon FTP 3.1 Build 1735 and Build 1736 (3.1.7.1736), and possibly other versions before 3.1.8.1737, allows remote attackers to cause a denial of service (crash) via a large number of PORT commands with long arguments, which triggers a NULL pointer dereference. NOTE: some of these details are obtained from third party information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Blackmoonftpserver | Blackmoon Ftp Server | 3.1 |
References
- http://osvdb.org/70452
- http://secunia.com/advisories/42933Vendor Advisory
- http://www.exploit-db.com/exploits/15986Exploit
- http://www.securityfocus.com/bid/45814
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64696
- http://osvdb.org/70452
- http://secunia.com/advisories/42933Vendor Advisory
- http://www.exploit-db.com/exploits/15986Exploit
- http://www.securityfocus.com/bid/45814
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64696
FAQ
What is CVE-2011-0507?
CVE-2011-0507 is a vulnerability with a CVSS score of 4.3 (MEDIUM). FTPService.exe in Blackmoon FTP 3.1 Build 1735 and Build 1736 (3.1.7.1736), and possibly other versions before 3.1.8.1737, allows remote attackers to cause a denial of service (crash) via a large numb...
How severe is CVE-2011-0507?
CVE-2011-0507 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0507?
Check the references section above for vendor advisories and patch information. Affected products include: Blackmoonftpserver Blackmoon Ftp Server.