Vulnerabilities > CVE-2004-0277 - Unspecified vulnerability in Bolintech Dream FTP Server 1.02
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Format string vulnerability in Dream FTP 1.02 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the username.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability (2). CVE-2004-0277. Remote exploit for windows platform |
| id | EDB-ID:23661 |
| last seen | 2016-02-02 |
| modified | 2004-02-07 |
| published | 2004-02-07 |
| reporter | Skylined |
| source | https://www.exploit-db.com/download/23661/ |
| title | BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability 2 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-February/016871.html
- http://marc.info/?l=bugtraq&m=107656166402882&w=2
- http://www.securityfocus.com/bid/9600
- http://www.security-protocols.com/modules.php?name=News&file=article&sid=1722
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15070