CVE-2007-6263

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The dataconn function in ftpd.c in netkit ftpd (netkit-ftpd) 0.17, when certain modifications to support SSL have been introduced, calls fclose on an uninitialized file stream, which allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via some types of FTP over SSL protocol behavior, as demonstrated by breaking a passive FTP DATA connection in a way that triggers an error in the server's SSL_accept function. NOTE: the netkit ftp issue is covered by CVE-2007-5769.

La función dataconn en ftpd.c de netkit ftpd (netkit-ftpd) 0.17, al introducir ciertas modificaciones para el soporte SSL, llama a la función fclose sobre un flujo de fichero no inicializado, lo cual permite a atacantes remotos provocar una denegación de servicio (caída del demonio) y posiblemente tener algún otro impacto desconocido mediante ciertos comportamientos de FTP sobre SSL, como ha sido demostrado rompiendo una conexión pasiva FTP DATA de forma que provoca un error en la función SSL_accept del servidor. NOTA: el asunto de netkit ftp está cubierto en CVE-2007-5769.

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-12-05 CVE Reserved
2007-12-06 CVE Published
2024-08-07 CVE Updated
2024-08-07 First Exploit
2024-09-01 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-20: Improper Input Validation

CAPEC

References (6)

URL	Tag	Source
http://marc.info/?l=full-disclosure&m=119704348003382&w=2	Mailing List
http://osvdb.org/41191	Vdb Entry
http://secunia.com/advisories/28697	Third Party Advisory
http://www.securityfocus.com/bid/26763	Vdb Entry

URL	Date	SRC
http://bugs.gentoo.org/show_bug.cgi?id=199206	2024-08-07

URL	Date	SRC

URL	Date	SRC
http://www.gentoo.org/security/en/glsa/glsa-200801-17.xml	2009-09-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Netkit-ftp Search vendor "Netkit-ftp"		Netkit Ftp Search vendor "Netkit-ftp" for product "Netkit Ftp"				0.17 Search vendor "Netkit-ftp" for product "Netkit Ftp" and version "0.17"		-		Affected