Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0695

5 documents4 sources
Severity
7.5HIGH
EPSS
79.1%
top 0.93%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
4D Webstar
Timeline
PublishedJul 27
Latest updateMay 3

Description

Stack-based buffer overflow in the FTP service for 4D WebSTAR 5.3.2 and earlier allows remote attackers to execute arbitrary code via a long FTP command.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVD4d/webstar9 versions+8

🔴Vulnerability Details

2
GHSA
GHSA-ww64-hr59-ghr5: Stack-based buffer overflow in the FTP service for 4D WebSTAR 52022-05-03
CVEList
CVE-2004-0695: Stack-based buffer overflow in the FTP service for 4D WebSTAR 52004-07-16

💥Exploits & PoCs

2
Exploit-DB
WebSTAR FTP Server - USER Overflow (Metasploit)2010-09-20
Exploit-DB
WebSTAR FTP Server 5.3.2 (OSX) - USER Overflow (Metasploit)2004-07-13
CVE-2004-0695 (HIGH CVSS 7.5) | Stack-based buffer overflow in the | cvebase.io