CyberSec.Space Logo
Back to CVE Browser

CVE-2008-4588

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile20.23th
PublishedOct 15, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command.

Affected Platforms (CPE)

πŸ“¦
Etype

Eserv

= 3.0
πŸ“¦
Etype

Eserv

= 3.25
πŸ“¦
Etype

Eserv

= 3.26

References & Advisories

πŸ”— http://securityreason.com/securityalert/4415
πŸ”— http://www.securityfocus.com/bid/31753
πŸ”— http://www.zeroscience.org/codes/eserv_bof.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/45864
πŸ”— https://www.exploit-db.com/exploits/6752
πŸ”— http://securityreason.com/securityalert/4415
πŸ”— http://www.securityfocus.com/bid/31753
πŸ”— http://www.zeroscience.org/codes/eserv_bof.txt

Related Vulnerabilities

CVE-2008-334910.0

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to ...

CVE-2000-052310.0

Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD ...

CVE-2000-09077.5

EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO a...

CVE-2002-02227.5

Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command.