CVE-2007-2010

CVE-2007-2010

EPSS 1.6%

Double free vulnerability in bftpd before 1.8 allows remote authenticated users to cause a denial of service (daemon crash) via a (1) get or (2) mget command.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://bftpd.sourceforge.net/http://bftpd.sourceforge.net/downloads/CHANGELOG http://osvdb.org/34889 http://secunia.com/advisories/24864 https://exchange.xforce.ibmcloud.com/vulnerabilities/33594 http://www.securityfocus.com/bid/23406 http://www.vupen.com/english/advisories/2007/1347