PT-2004-1422 · Evolution · Evolution

Jokko

Published

2004-03-18

Updated

2017-07-11

CVE-2004-0268

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions EvolutionX versions 3921 through 3935

Description The issue allows remote attackers to cause a denial of service, resulting in the system hanging. This can be achieved by sending a long cd command to the FTP server or a long dir command to the telnet server.

Recommendations For EvolutionX versions 3921 through 3935, consider restricting access to the FTP and telnet servers until a fix is available. As a temporary workaround, limit the length of commands accepted by the FTP and telnet servers to prevent the buffer overflows.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0268

Affected Products

Evolution

PT-2004-1422 · Evolution · Evolution

CVE-2004-0268

Related Identifiers

Affected Products

References · 6