CVE-2010-0625

CWE-119Buffer Overflow3 documents3 sources
Severity
6.5MEDIUM
EPSS
27.6%
top 3.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Novell NetwareNovell Netware FTP Server
Timeline
PublishedApr 5
Latest updateMay 2

Description

Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

NVDnovell/netware_ftp_server20 versions+19
NVDnovell/netware5.1, 6.0, 6.5+2

🔴Vulnerability Details

2
GHSA
GHSA-c426-xr6j-jp5v: Stack-based buffer overflow in NWFTPD2022-05-02
CVEList
CVE-2010-0625: Stack-based buffer overflow in NWFTPD2010-04-05
CVE-2010-0625 (MEDIUM CVSS 6.5) | Stack-based buffer overflow in NWFT | cvebase.io