Vulnerabilities > CVE-1999-1510 - Unspecified vulnerability in Bisonware FTP Server

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

bisonware

exploit available

metasploit

NVD

Published: 1999-05-17

Updated: 2017-12-19

Summary

Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.

Vulnerable Configurations

Part	Description	Count
Application	Bisonware Bisonware Bisonware FTP Server *	1

Exploit-Db

description	BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit. CVE-1999-1510. Remote exploit for windows platform
id	EDB-ID:17649
last seen	2016-02-02
modified	2011-08-10
published	2011-08-10
reporter	localh0t
source	https://www.exploit-db.com/download/17649/
title	BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit

description	BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit (MSF). CVE-1999-1510. Remote exploit for windows platform
id	EDB-ID:17810
last seen	2016-02-02
modified	2011-09-09
published	2011-09-09
reporter	SecPod Research
source	https://www.exploit-db.com/download/17810/
title	BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit MSF

description	BisonWare BisonWare FTP Server 3.5 Multiple Vulnerabilities. CVE-1999-1510 . Remote exploit for linux platform
id	EDB-ID:19219
last seen	2016-02-02
modified	1999-05-17
published	1999-05-17
reporter	Arne Vidstrom
source	https://www.exploit-db.com/download/19219/
title	bisonware bisonware ftp server 3.5 - Multiple Vulnerabilities

Metasploit

description	BisonWare BisonFTP Server 3.5 is prone to an overflow condition. This module exploits a buffer overflow vulnerability in the said application.
id	MSF:EXPLOIT/WINDOWS/FTP/BISON_FTP_BOF
last seen	2020-03-15
modified	2017-07-24
published	2015-11-20
references	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1510 http://secpod.org/msf/bison_server_bof.rb
reporter	Rapid7
source	https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/ftp/bison_ftp_bof.rb
title	BisonWare BisonFTP Server Buffer Overflow

Packetstorm

data source	https://packetstormsecurity.com/files/download/104942/bison_server_bof.rb.txt
id	PACKETSTORM:104942
last seen	2016-12-05
published	2011-09-09
reporter	Veerendra G.G
source	https://packetstormsecurity.com/files/104942/BisonFTP-3.5-Buffer-Overflow.html
title	BisonFTP 3.5 Buffer Overflow

data source	https://packetstormsecurity.com/files/download/134537/bison_ftp_bof.rb.txt
id	PACKETSTORM:134537
last seen	2016-12-05
published	2015-11-25
reporter	localh0t
source	https://packetstormsecurity.com/files/134537/BisonWare-BisonFTP-Server-3.5-Buffer-Overflow.html
title	BisonWare BisonFTP Server 3.5 Buffer Overflow

Summary

Vulnerable Configurations

Exploit-Db

Metasploit

Packetstorm

References