CyberSec.Space Logo
返回 CVE 浏览器

CVE-2004-0340

HIGH
7.2
CVSS Severity Score
EPSS Score0.1320%
EPSS Percentile32.92th
Published2004年11月23日
Last Modified2026年4月16日

Vulnerability Description

Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long (1) LIST, (2) NLST, or (3) STAT commands.

Affected Platforms (CPE)

📦
Texas Imperial Software

Wftpd

= 3.0
📦
Texas Imperial Software

Wftpd

= 3.0
📦
Texas Imperial Software

Wftpd

= 3.0_0r3
📦
Texas Imperial Software

Wftpd

= 3.0_0r4
📦
Texas Imperial Software

Wftpd

= 3.0_0r4
📦
Texas Imperial Software

Wftpd

= 3.0_0r5
📦
Texas Imperial Software

Wftpd

= 3.0_0r5
📦
Texas Imperial Software

Wftpd

= 3.10_r1
📦
Texas Imperial Software

Wftpd

= 3.20
📦
Texas Imperial Software

Wftpd

= 3.21
📦
Texas Imperial Software

Wftpd

= pro_3.10_r1
📦
Texas Imperial Software

Wftpd

= pro_3.20
📦
Texas Imperial Software

Wftpd

= pro_3.21

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=107801208004699&w=2
🔗 http://secunia.com/advisories/11001
🔗 http://www.securityfocus.com/bid/9767
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15340
🔗 http://marc.info/?l=bugtraq&m=107801208004699&w=2
🔗 http://secunia.com/advisories/11001
🔗 http://www.securityfocus.com/bid/9767
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15340

相关漏洞威胁

CVE-1999-095010.0

Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create n...

CVE-2001-029610.0

Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long CWD command.

CVE-2001-13867.5

WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, which bypa...

CVE-2001-06947.5

Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files via a dot dot attack in the CD...