CVE-2008-0725
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple heap-based buffer overflows in the (1) FTP service and (2) administration service in Titan FTP Server 6.0.5.549 allow remote attackers to cause a denial of service (daemon hang) and possibly execute arbitrary code via a long command. NOTE: the USER and PASS commands for the FTP service are covered by CVE-2008-0702.
Múltiples desbordamientos de búfer basados en la memoria libre para la reserva dinámica (heap) en el (1) servicio FTP y (2) servicio de administración de Titan FTP Server 6.0.5.549. Permiten a atacantes remotos provocar una denegación de servicio (cuelgue del demonio) y posiblemente ejecutar código de su elección a través de un comando largo. NOTA: los comandos USUARIO y CONTRASEÑA para el servicio FTP están cubiertos por CVE-2008-0702.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-02-11 CVE Reserved
- 2008-02-12 CVE Published
- 2024-09-17 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/28760 | 2008-09-05 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Titan Search vendor "Titan" | Ftp Server Search vendor "Titan" for product "Ftp Server" | 6.0.5.549 Search vendor "Titan" for product "Ftp Server" and version "6.0.5.549" | - |
Affected
| ||||||