Vulnerability Details CVE-2001-0696
NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://netwinsite.com/surgeftp/manual/updates.htm
- http://www.securityfocus.com/archive/1/191916
- http://www.securityfocus.com/bid/2891
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6712
- http://netwinsite.com/surgeftp/manual/updates.htm
- http://www.securityfocus.com/archive/1/191916
- http://www.securityfocus.com/bid/2891
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6712