PT-2007-4806 · W3Filer · W3Filer

R0Ut3R

Published

2007-07-03

Updated

2017-09-29

CVE-2007-3548

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions W3Filer version 2.1.3

Description A stack-based buffer overflow issue allows remote FTP servers to cause a denial of service, potentially leading to application hang or crash, and possibly execute arbitrary code. This occurs when a large banner is sent to a client that is sending a file.

Recommendations For W3Filer version 2.1.3, consider restricting the size of banners received from remote FTP servers to prevent potential exploitation until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3548

Affected Products

W3Filer

PT-2007-4806 · W3Filer · W3Filer

CVE-2007-3548

Related Identifiers

Affected Products

References · 5