CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-2420

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0460%
EPSS Percentile32.99th
Published2005年8月3日
Last Modified2026年4月16日

Vulnerability Description

flsearch.pl in FtpLocate 2.02 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP GET request.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=112230697123357&w=2
🔗 http://secunia.com/advisories/16218
🔗 http://securitytracker.com/id?1014570
🔗 http://www.osvdb.org/18305
🔗 http://www.securityfocus.com/bid/14367
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/21540
🔗 http://marc.info/?l=bugtraq&m=112230697123357&w=2
🔗 http://secunia.com/advisories/16218

関連する脆弱性情報

CVE-2005-120810.0

Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to exe...

CVE-2005-189710.0

Unknown vulnerability in FlexCast Audio Video Streaming Server before 2.0 has unknown impact and attack vectors.

CVE-2005-159610.0

index.php in Fusion SBX 1.2 and earlier does not properly use the extract function, which allows remote attackers to bypass authen...

CVE-2005-214910.0

config.php in Cacti 0.8.6e and earlier allows remote attackers to set the no_http_headers switch, then modify session information ...