Vulnerabilities > CVE-2004-2418 - Unspecified vulnerability in Whitsoft Development Slimftpd 3.15
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in SlimFTPd 3.15 and earlier allows local users to execute arbitrary code via a long command, such as (1) CWD, (2) STOR, (3) MKD, and (4) STAT.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | SlimFTPd <= 3.15 Remote Buffer Overflow Exploit. CVE-2004-2418. Remote exploit for windows platform |
| id | EDB-ID:623 |
| last seen | 2016-01-31 |
| modified | 2004-11-10 |
| published | 2004-11-10 |
| reporter | class101 |
| source | https://www.exploit-db.com/download/623/ |
| title | SlimFTPd <= 3.15 - Remote Buffer Overflow Exploit |
Nessus
| NASL family | FTP |
| NASL id | SLIMFTPD_OVERFLOW.NASL |
| description | The remote host appears to be using SlimFTPd, a free, small, standards-compliant FTP server for Windows. According to its banner, the version of SlimFTPd installed on the remote host is prone to one or more buffer overflow attacks that can lead to arbitrary code execution. Note that successful exploitation of either of these flaws requires an attacker first authenticate. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 15704 |
| published | 2004-11-13 |
| reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/15704 |
| title | SlimFTPd Multiple Command Handling Overflow |
| code | |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-11/0293.html
- http://www.whitsoftdev.com/slimftpd/
- http://www.securityfocus.com/bid/11645
- http://www.osvdb.org/11604
- http://securitytracker.com/id?1012167
- http://secunia.com/advisories/13161
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18014