CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2961

Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an <A> tag.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.058

EPSS Ranking 90.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/17021/
http://secunia.com/advisories/17035
http://www.debian.org/security/2005/dsa-834
http://www.securityfocus.com/bid/14993
https://exchange.xforce.ibmcloud.com/vulnerabilities/22491
http://secunia.com/advisories/17021/
http://secunia.com/advisories/17035
http://www.debian.org/security/2005/dsa-834
http://www.securityfocus.com/bid/14993
https://exchange.xforce.ibmcloud.com/vulnerabilities/22491

Products affected by CVE-2005-2961

Prozilla » Prozilla Download Accelerator » Version: 1.3.7.4

cpe:2.3:a:prozilla:prozilla_download_accelerator:1.3.7.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2961

Products

Pricing

Contact Us