PT-2007-2119 · Ipswitch · Ipswitch Ws Ftp

Publicado

2007-02-02

Atualizado

2018-10-16

CVE-2007-0665

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Ipswitch WS FTP 2007 Professional

Description A format string issue in the SCP module of Ipswitch WS FTP 2007 Professional may allow remote attackers to execute arbitrary commands by including format string specifiers in the filename, particularly when using the SHELL WS FTP script command.

Recommendations For Ipswitch WS FTP 2007 Professional, consider disabling the SCP module or restricting its use until a fix is available to prevent potential exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-0665

Produtos afetados

Ipswitch Ws Ftp

PT-2007-2119 · Ipswitch · Ipswitch Ws Ftp

CVE-2007-0665

Identificadores relacionados

Produtos afetados

Referências · 6