CVE-2003-1158 : Multiple buffer overflows in the FTP service in Plug and Play Web Server 1.0002c

Multiple buffer overflows in the FTP service in Plug and Play Web Server 1.0002c allow remote attackers to cause a denial of service (crash) via long (1) dir, (2) ls, (3) delete, (4) mkdir, (5) DELE, (6) RMD, or (7) MKD commands.

Published 2003-12-31 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2003-1158

Plug And Play Software » Plug And Play Web Server » Version: 1.0.002c
cpe:2.3:a:plug_and_play_software:plug_and_play_web_server:1.0.002c:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-1158

EPSS FAQ

3.78%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 87 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-1158

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2003-1158

Jump to

Vulnerability Details : CVE-2003-1158

Products affected by CVE-2003-1158

Exploit prediction scoring system (EPSS) score for CVE-2003-1158

CVSS scores for CVE-2003-1158

References for CVE-2003-1158