PT-2013-5170 · Netwin · Surgeftp

Published

2013-08-09

Updated

2017-08-29

CVE-2013-4742

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SurgeFTP versions prior to 23d2

Description The issue is caused by a buffer overflow that occurs when a long string is sent within the authentication request, potentially allowing remote attackers to cause a denial of service or possibly execute arbitrary code.

Recommendations For versions prior to 23d2, update to version 23d2 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2013-4742

Affected Products

Surgeftp

PT-2013-5170 · Netwin · Surgeftp

CVE-2013-4742

Weakness Enumeration

Related Identifiers

Affected Products

References · 6