PT-2018-18078 · Segger · Segger Ftp Server

Hyp3Rlinx

Published

2018-03-04

Updated

2019-03-07

CVE-2018-7449

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SEGGER FTP Server for Windows versions prior to 3.22a

Description The issue allows remote attackers to cause a denial of service, resulting in the daemon crashing. This can be achieved by sending an invalid LIST, STOR, or RETR command.

Recommendations For versions prior to 3.22a, update to version 3.22a or later to resolve the issue.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2018-7449

Affected Products

Segger Ftp Server

PT-2018-18078 · Segger · Segger Ftp Server

CVE-2018-7449

Weakness Enumeration

Related Identifiers

Affected Products

References · 5