Vulnerability Details CVE-2013-3930
Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to execute arbitrary code via a crafted directory name in a CWD command reply.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/96314
- http://secunia.com/advisories/53743
- http://www.coreftp.com/forums/viewtopic.php?t=222102
- http://www.securityfocus.com/bid/61786
- http://osvdb.org/96314
- http://secunia.com/advisories/53743
- http://www.coreftp.com/forums/viewtopic.php?t=222102
- http://www.securityfocus.com/bid/61786
Products affected by CVE-2013-3930
-
cpe:2.3:a:coreftp:core_ftp:1.2
-
cpe:2.3:a:coreftp:core_ftp:2
-
cpe:2.3:a:coreftp:core_ftp:2.0
-
cpe:2.3:a:coreftp:core_ftp:2.1
-
cpe:2.3:a:coreftp:core_ftp:2.2