← voltar
CVE-2020-37067

Filetto 1.0 - 'FEAT' Denial of Service

CVSS 7.1 HIGHEPSS 0.4%CWE-770
Filetto 1.0 FTP server contains a denial of service vulnerability in the FEAT command processing that allows attackers to crash the service. Attackers can send an oversized FEAT command with 11,008 bytes of repeated characters to trigger a buffer overflow and terminate the FTP service.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Utillyty · Filetto

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://sourceforge.net/projects/filettohttps://www.exploit-db.com/exploits/48503https://www.vulncheck.com/advisories/filetto-feat-denial-of-servicehttp://www.utillyty.eu