Vulnerabilities > CVE-2005-1873 - Remote Security vulnerability in Crob FTP 3.6.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with a long string or (2) a globbing ("*") character followed by a long string.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Crob FTP Server <= 3.6.1 Remote Stack Overflow Exploit. CVE-2005-1873. Remote exploit for windows platform |
| id | EDB-ID:1028 |
| last seen | 2016-01-31 |
| modified | 2005-06-03 |
| published | 2005-06-03 |
| reporter | Leon Juranic |
| source | https://www.exploit-db.com/download/1028/ |
| title | Crob FTP Server <= 3.6.1 - Remote Stack Overflow Exploit |
Nessus
| NASL family | FTP |
| NASL id | CROBFTP_OVERFLOWS.NASL |
| description | The version of Crob FTP Server on the remote host suffers from multiple remote buffer overflows. Once authenticated, an attacker can exploit these vulnerabilities to crash the affected daemon and even execute arbitrary code remotely within the context of the affected service. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 19236 |
| published | 2005-07-20 |
| reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/19236 |
| title | Crob FTP Server < 3.6.1 build 263 Multiple Vulnerabilities |