CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-0338

HIGH
7.5
CVSS Severity Score
EPSS Score0.1630%
EPSS Percentile2.96th
Published2007年1月18日
Last Modified2026年4月23日

Vulnerability Description

Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.

Affected Platforms (CPE)

📦
Bolintech

Dreamftp Server

All versions

References & Advisories

🔗 http://osvdb.org/32816
🔗 http://secunia.com/advisories/23731
🔗 https://www.exploit-db.com/exploits/3128
🔗 http://osvdb.org/32816
🔗 http://secunia.com/advisories/23731
🔗 https://www.exploit-db.com/exploits/3128

相关漏洞威胁

CVE-2007-030310.0

Multiple unspecified vulnerabilities in Zina 1.0rc1 and earlier have unknown impact and attack vectors related to "Potential secur...

CVE-2007-036810.0

Stack-based buffer overflow in mbse-bbs 0.70 and earlier allows local users to execute arbitrary code via a long string in the MBS...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-038610.0

Unspecified vulnerability in the rating section in PostNuke 0.764 has unknown impact and attack vectors, related to "an interestin...