CyberSec.Space Logo
Back to CVE Browser

CVE-2005-2277

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1410%
EPSS Percentile4.49th
PublishedJul 15, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename argument of a PUT command.

Affected Platforms (CPE)

πŸ“¦
Nokia

Affix

= 2.1.2
πŸ“¦
Nokia

Affix

= 3.2.0

References & Advisories

πŸ”— http://affix.sourceforge.net/affix_212_sec.patch
πŸ”— http://affix.sourceforge.net/affix_320_sec.patch
πŸ”— http://marc.info/?l=bugtraq&m=112119962704397&w=2
πŸ”— http://www.debian.org/security/2005/dsa-762
πŸ”— http://www.digitalmunition.com/DMA%5B2005-0712b%5D.txt
πŸ”— http://www.securityfocus.com/bid/14232
πŸ”— http://affix.sourceforge.net/affix_212_sec.patch
πŸ”— http://affix.sourceforge.net/affix_320_sec.patch

Related Vulnerabilities

CVE-2005-22507.5

Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code v...

CVE-2005-27167.5

The event_pin_code_request function in the btsrv daemon (btsrv.c) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execut...

CVE-2005-12947.2

The affix_sock_register in the Affix Bluetooth Protocol Stack for Linux might allow local users to gain privileges via a socket ca...

CVE-2018-206776.1

In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.