CyberSec.Space Logo
Back to CVE Browser

CVE-2003-1368

MEDIUM
6.4
CVSS Severity Score
EPSS Score0.0250%
EPSS Percentile24.79th
PublishedDec 31, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the 32bit FTP client 9.49.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.

Affected Platforms (CPE)

πŸ’»
Electrasoft

Ftp Client

= 9.49.01

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0054.html
πŸ”— http://www.securityfocus.com/bid/6764
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/11234
πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0054.html
πŸ”— http://www.securityfocus.com/bid/6764
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/11234

Related Vulnerabilities

CVE-2003-004110.0

Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by ...

CVE-2004-168210.0

Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string...

CVE-1999-009710.0

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

CVE-2005-227710.0

Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary commands via shell metach...