Multiple heap-based buffer overflows in the client in Core FTP LE 2.2 build 1798 allow remote FTP servers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in a reply to a (1) USER, (2) PASS, (3) PASV, (4) SYST, (5) PWD, or (6) CDUP command.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-25T20:00:00Z
Updated: 2024-09-16T23:35:59.267Z
Reserved: 2014-06-25T00:00:00Z
Link: CVE-2014-4643
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-06-25T20:55:07.710
Modified: 2014-06-26T14:30:31.607
Link: CVE-2014-4643
Redhat
No data.