Vulnerabilities > CVE-2007-0330 - Local Memory Corruption vulnerability in Ipswitch WS FTP PRO 2007

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ipswitch

NVD

Published: 2007-01-18

Updated: 2018-10-16

Summary

Buffer overflow in wsbho2k0.dll, as used by wsftpurl.exe, in Ipswitch WS_FTP 2007 Professional allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long ftp:// URL in an HTML document, and possibly other vectors.

Vulnerable Configurations

Part	Description	Count
Application	Ipswitch Ipswitch WS FTP PRO 2007	1

References

http://osvdb.org/33476
http://securityreason.com/securityalert/2160
http://www.securityfocus.com/archive/1/456755/100/0/threaded
http://www.securityfocus.com/archive/1/456901/100/0/threaded
http://www.securityfocus.com/archive/1/457097/100/0/threaded
http://www.securityfocus.com/bid/22062