CVE-2008-4321
CVE-2008-4321
9.3
CriticalPublished:
Last updated:
Source:cve@mitre.org
Modified
Weakness (CWE)
CVSS Vector
v2.0- Attack Vector
- Network
- Attack Complexity
- Medium
- Authentication
- None
- Confidentiality
- Complete
- Integrity
- Complete
- Availability
- Complete
Description
Buffer overflow in FlashGet (formerly JetCar) FTP 1.9 allows remote FTP servers to execute arbitrary code via a long response to the PWD command.
Exploits
62402008-08-13dosWindows
FlashGet 1.9 - 'FTP PWD Response' Remote Buffer Overflow (PoC)
By h07
62482008-08-15remoteWindows
FlashGet 1.9.0.1012 - 'FTP PWD Response' SEH Stack Overflow
By SkOd
62562008-08-17remoteWindows
FlashGet 1.9.0.1012 - 'FTP PWD Response' Remote Buffer Overflow (SafeSEH)
By Guido Landi
References
cve@mitre.org
http://secunia.com/advisories/31481cve@mitre.org
http://securityreason.com/securityalert/4327cve@mitre.org
http://www.securityfocus.com/bid/30685cve@mitre.org
http://www.vupen.com/english/advisories/2008/2381cve@mitre.org
https://www.exploit-db.com/exploits/6240cve@mitre.org
https://www.exploit-db.com/exploits/6248cve@mitre.org
https://www.exploit-db.com/exploits/6256af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/31481af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/4327af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/30685af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2008/2381af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/44443af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/6240af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/6248af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/6256