CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1025

The FTP server in AS/400 4.3, when running in IFS mode, allows remote attackers to obtain sensitive information via a symlink attack using RCMD and the ADDLNK utility, as demonstrated using the QSYS.LIB library.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=111264136829017&w=2
http://www.osvdb.org/15300
http://www.venera.com/downloads/AS400_user_accounts_ftp_disclosure.pdf
http://marc.info/?l=bugtraq&m=111264136829017&w=2
http://www.osvdb.org/15300
http://www.venera.com/downloads/AS400_user_accounts_ftp_disclosure.pdf

Products affected by CVE-2005-1025

Ibm » Iseries As 400 » Version: 4.3

cpe:2.3:h:ibm:iseries_as_400:4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1025

Products

Pricing

Contact Us