CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-4588

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile20.23th
Published2008年10月15日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command.

Affected Platforms (CPE)

📦
Etype

Eserv

= 3.0
📦
Etype

Eserv

= 3.25
📦
Etype

Eserv

= 3.26

References & Advisories

🔗 http://securityreason.com/securityalert/4415
🔗 http://www.securityfocus.com/bid/31753
🔗 http://www.zeroscience.org/codes/eserv_bof.txt
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45864
🔗 https://www.exploit-db.com/exploits/6752
🔗 http://securityreason.com/securityalert/4415
🔗 http://www.securityfocus.com/bid/31753
🔗 http://www.zeroscience.org/codes/eserv_bof.txt

相關漏洞威脅

CVE-2008-334910.0

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to ...

CVE-2000-052310.0

Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD ...

CVE-2000-09077.5

EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO a...

CVE-2002-02227.5

Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command.