cbcvebase.
CVE-2005-0312
published 2005-01-27

CVE-2005-0312: WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a…

PriorityP414low2.1CVSS 2.0
AVLACLAuNCNINAP
EXPLOIT
EPSS
2.73%
84.2th percentile
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability.

Affected

3 ranges
VendorProductVersion rangeFixed in
jgaawarftpd
war_ftp_daemonwar_ftp_daemon
war_ftp_daemonwar_ftp_daemon
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.