Vulnerabilities > CVE-2005-2634 - Unspecified vulnerability in Winftp Server Winftp Server 1.6.8
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036173.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036173.html
- http://marc.info/?l=bugtraq&m=112431455512374&w=2
- http://marc.info/?l=bugtraq&m=112431455512374&w=2
- http://secunia.com/advisories/16461/
- http://secunia.com/advisories/16461/
- http://www.autistici.org/fdonato/advisory/WinFtpServer1.6.8-adv.txt
- http://www.autistici.org/fdonato/advisory/WinFtpServer1.6.8-adv.txt
- http://www.securityfocus.com/bid/14581
- http://www.securityfocus.com/bid/14581
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21873
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21873