CVE-2005-3812
published 2005-11-26CVE-2005-3812: freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing arguments.
PriorityP418medium6.8CVSS 2.0
AVNACLAuSCNINAC
EXPLOIT
EPSS
2.99%
85.6th percentile
freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing arguments.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freeftpd | freeftpd | — | — |
| netqmail | netqmail | >= 0 < 1.06-6.2~deb10u1build0.20.04.1 | 1.06-6.2~deb10u1build0.20.04.1 |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:C
osv9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r2xv-687j-x7wf: freeFTPd 1
ghsa_unreviewed·2022-05-01
CVE-2005-3812 [MEDIUM] GHSA-r2xv-687j-x7wf: freeFTPd 1
freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing arguments.
OSV
netqmail vulnerabilities
osv·2020-09-29·CVSS 9.8
CVE-2005-1513 netqmail vulnerabilities
netqmail vulnerabilities
It was discovered that netqmail did not properly handle certain input. Both
remote and local attackers could use this vulnerability to cause netqmail
to crash or execute arbitrary code. (CVE-2005-1513, CVE-2005-1514,
CVE-2005-1515)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this to bypass email
address validation. (CVE-2020-3811)
It was discovered that netqmail did not properly handle certain input when
validating email addresses. An attacker could use this vulnerability to
cause netqmail to disclose sensitive information. (CVE-2020-3812)
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/17737http://www.securityfocus.com/archive/1/417602/30/0/threadedhttp://www.securityfocus.com/bid/15557http://www.vupen.com/english/advisories/2005/2580http://secunia.com/advisories/17737http://www.securityfocus.com/archive/1/417602/30/0/threadedhttp://www.securityfocus.com/bid/15557http://www.vupen.com/english/advisories/2005/2580
2005-11-26
Published