Vulnerability Details CVE-2001-0702
Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long (1) username, (2) password, or (3) PASV command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.091
EPSS Ranking 92.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00070.html
- http://www.securityfocus.com/archive/1/192655
- http://www.securityfocus.com/bid/2901
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6728
- http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00070.html
- http://www.securityfocus.com/archive/1/192655
- http://www.securityfocus.com/bid/2901
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6728
Products affected by CVE-2001-0702
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.0
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.01
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.1
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.2
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.22
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.3
-
cpe:2.3:a:grant_averett:ceberus_ftp_server:1.5