Vulnerability Details CVE-2004-1327
Buffer overflow in Crystal FTP Client 2.8 allows remote malicious servers to execute arbitrary code via a response to a LIST command that contains a file name with a long extension.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.046
EPSS Ranking 89.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=110356203624337&w=2
- http://secunia.com/advisories/13583/
- http://www.securityfocus.com/bid/12038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18594
- http://marc.info/?l=bugtraq&m=110356203624337&w=2
- http://secunia.com/advisories/13583/
- http://www.securityfocus.com/bid/12038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18594
Products affected by CVE-2004-1327
-
cpe:2.3:a:crystal_art_software:crystal_ftp:2.4
-
cpe:2.3:a:crystal_art_software:crystal_ftp:2.5
-
cpe:2.3:a:crystal_art_software:crystal_ftp:2.6
-
cpe:2.3:a:crystal_art_software:crystal_ftp:2.7
-
cpe:2.3:a:crystal_art_software:crystal_ftp:2.8