Vulnerabilities > CVE-2004-2318

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

NVD

Published: 2004-12-31

Updated: 2024-11-20

Summary

The administrative interface (surgeftpmgr.cgi) for SurgeFTP Server 1.0b through 2.2k1 allows remote attackers to cause a temporary denial of service (crash) via requests with two percent (%) signs in the CMD parameter.

Vulnerable Configurations

Part	Description	Count
Application	Netwin Netwin Surgeftp 1.0B Netwin Surgeftp 2.2K1 Netwin Surgeftp 2.0C Netwin Surgeftp 2.0A Netwin Surgeftp 2.0B Netwin Surgeftp 2.0D Netwin Surgeftp 2.0E Netwin Surgeftp 2.0F	11

References

http://members.lycos.co.uk/r34ct/main/surge_FTP/surge-ftp.txt
http://members.lycos.co.uk/r34ct/main/surge_FTP/surge-ftp.txt
http://securitytracker.com/id?1008898
http://securitytracker.com/id?1008898
http://www.osvdb.org/3788
http://www.osvdb.org/3788
http://www.secunia.com/advisories/10758/
http://www.secunia.com/advisories/10758/
http://www.securityfocus.com/bid/9554
http://www.securityfocus.com/bid/9554
https://exchange.xforce.ibmcloud.com/vulnerabilities/15001
https://exchange.xforce.ibmcloud.com/vulnerabilities/15001

Vulnerabilities > CVE-2004-2318 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2004-2318"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2004-2318