CVE-2003-0772

Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.

Published: Sep 22, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0772
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ipswitch / ws_ftp_server	4.01	4.01.x
progress / ws_ftp_server	3.4	3.4.x

http://marc.info/?l=bugtraq&m=106288825902868&w=2
http://secunia.com/advisories/9671
http://www.kb.cert.org/vuls/id/219140
http://www.kb.cert.org/vuls/id/792284
http://www.securityfocus.com/bid/8542
https://exchange.xforce.ibmcloud.com/vulnerabilities/13119

Vulnerability Database

289,697

CVE-2003-0772