Vulnerability Details : CVE-2004-0695
Public exploit exists!
Stack-based buffer overflow in the FTP service for 4D WebSTAR 5.3.2 and earlier allows remote attackers to execute arbitrary code via a long FTP command.
Vulnerability category: OverflowExecute code
Products affected by CVE-2004-0695
- cpe:2.3:a:4d:webstar:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.2:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.3:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:4d:webstar:5.3.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-0695
87.71%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2004-0695
-
WebSTAR FTP Server USER Overflow
Disclosure Date: 2004-07-13First seen: 2020-04-26exploit/osx/ftp/webstar_ftp_userThis module exploits a stack buffer overflow in the logging routine of the WebSTAR FTP server. Reliable code execution is obtained by a series of hops through the System library. Authors: - ddz <ddz@theta44.org> - hdm <x@hdm.io>
CVSS scores for CVE-2004-0695
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2004-0695
Jump to