Vulnerability Details CVE-2008-5753
Stack-based buffer overflow in BulletProof FTP Client 2.63 and 2010 allows user-assisted attackers to execute arbitrary code via a bookmark file entry with a long host name, which appears as a host parameter within the quick-connect bar.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.278
EPSS Ranking 96.3%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/50968
- http://packetstormsecurity.com/files/131965/BulletProof-FTP-Client-2010-Buffer-Overflow.html
- http://secunia.com/advisories/33322
- http://securityreason.com/securityalert/4835
- http://www.kb.cert.org/vuls/id/565580
- http://www.securityfocus.com/bid/33007
- https://www.exploit-db.com/exploits/37056/
- https://www.exploit-db.com/exploits/7571
- http://osvdb.org/50968
- http://packetstormsecurity.com/files/131965/BulletProof-FTP-Client-2010-Buffer-Overflow.html
- http://secunia.com/advisories/33322
- http://securityreason.com/securityalert/4835
- http://www.kb.cert.org/vuls/id/565580
- http://www.securityfocus.com/bid/33007
- https://www.exploit-db.com/exploits/37056/
- https://www.exploit-db.com/exploits/7571
Products affected by CVE-2008-5753
-
cpe:2.3:a:bpftp:bulletproof_ftp_client:2.63