CyberSec.Space Logo
Back to CVE Browser

CVE-2005-0312

LOW
2.1
CVSS Severity Score
EPSS Score0.1580%
EPSS Percentile7.74th
PublishedJan 27, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability.

Affected Platforms (CPE)

πŸ“¦
War Ftp Daemon

War Ftp Daemon

= 1.8
πŸ“¦
War Ftp Daemon

War Ftp Daemon

= 1.82_rc9

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=110687202332039&w=2
πŸ”— http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
πŸ”— http://www.securityfocus.com/bid/12384
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/19129
πŸ”— http://marc.info/?l=bugtraq&m=110687202332039&w=2
πŸ”— http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643
πŸ”— http://www.securityfocus.com/bid/12384
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/19129

Related Vulnerabilities

CVE-2007-156710.0

Stack-based buffer overflow in War FTP Daemon 1.65, and possibly earlier, allows remote attackers to cause a denial of service or ...

CVE-2013-227810.0

Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service, allows remote attackers to cause a ...

CVE-1999-10035.0

War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.

CVE-2006-57894.0

War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" fo...