PT-2007-2119 · Ipswitch · Ipswitch Ws Ftp

Published

2007-02-02

Updated

2018-10-16

CVE-2007-0665

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Ipswitch WS FTP 2007 Professional

Description A format string issue in the SCP module of Ipswitch WS FTP 2007 Professional may allow remote attackers to execute arbitrary commands by including format string specifiers in the filename, particularly when using the SHELL WS FTP script command.

Recommendations For Ipswitch WS FTP 2007 Professional, consider disabling the SCP module or restricting its use until a fix is available to prevent potential exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0665

Affected Products

Ipswitch Ws Ftp

PT-2007-2119 · Ipswitch · Ipswitch Ws Ftp

CVE-2007-0665

Related Identifiers

Affected Products

References · 6