CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-2277

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1410%
EPSS Percentile4.49th
Published2005年7月15日
Last Modified2026年4月16日

Vulnerability Description

Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename argument of a PUT command.

Affected Platforms (CPE)

📦
Nokia

Affix

= 2.1.2
📦
Nokia

Affix

= 3.2.0

References & Advisories

🔗 http://affix.sourceforge.net/affix_212_sec.patch
🔗 http://affix.sourceforge.net/affix_320_sec.patch
🔗 http://marc.info/?l=bugtraq&m=112119962704397&w=2
🔗 http://www.debian.org/security/2005/dsa-762
🔗 http://www.digitalmunition.com/DMA%5B2005-0712b%5D.txt
🔗 http://www.securityfocus.com/bid/14232
🔗 http://affix.sourceforge.net/affix_212_sec.patch
🔗 http://affix.sourceforge.net/affix_320_sec.patch

相關漏洞威脅

CVE-2005-22507.5

Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code v...

CVE-2005-27167.5

The event_pin_code_request function in the btsrv daemon (btsrv.c) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execut...

CVE-2005-12947.2

The affix_sock_register in the Affix Bluetooth Protocol Stack for Linux might allow local users to gain privileges via a socket ca...

CVE-2018-206776.1

In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.