Vulnerabilities > CVE-2005-3684 - Unspecified vulnerability in Freeftpd 1.0.8
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN freeftpd
exploit available
Summary
Multiple buffer overflows in freeFTPd 1.0.8, without logging enabled, allow remote authenticated attackers to cause a denial of service (application crash), and possibly execute arbitrary code, via long (1) MKD and (2) DELE commands.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | FreeFTPD <= 1.0.8 (USER) Remote Buffer Overflow Exploit. CVE-2005-3683,CVE-2005-3684. Remote exploit for windows platform |
| id | EDB-ID:1330 |
| last seen | 2016-01-31 |
| modified | 2005-11-17 |
| published | 2005-11-17 |
| reporter | Expanders |
| source | https://www.exploit-db.com/download/1330/ |
| title | FreeFTPD <= 1.0.8 USER Remote Buffer Overflow Exploit |
Saint
| bid | 15457 |
| description | FreeFTPd user name buffer overflow |
| id | ftp_freeftpd |
| osvdb | 20909 |
| title | freeftpd_user_bo |
| type | remote |
References
- http://marc.info/?l=full-disclosure&m=113222358007499&w=2
- http://marc.info/?l=full-disclosure&m=113222358007499&w=2
- http://secunia.com/advisories/17624
- http://secunia.com/advisories/17624
- http://www.osvdb.org/20909
- http://www.osvdb.org/20909
- http://www.securityfocus.com/bid/15486
- http://www.securityfocus.com/bid/15486
- http://www.vupen.com/english/advisories/2005/2471
- http://www.vupen.com/english/advisories/2005/2471
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23118
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23118