VDB-97203 · CVE-2015-10003 · BID 74535

FileZilla Server har 0.9.50 PORT kura hakki ndiyam

Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin FileZilla Server har 0.9.50. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, $software_file na cikin fayil, PORT Handler na cikin sashi. Ngam manipulation shi kura hakki ndiyam. CWE shidin ka a yi bayani matsala sai ya kai CWE-441. Gaskiya, laifi an fitar da shi 07/07/2015 ta Amit Klein (Webseite). Advisory ɗin ana rabawa don saukewa a securitygalore.com. Wannan rauni ana sayar da shi da suna CVE-2015-10003. Ngam yiɗi ka a tuma ndiyam ka nder waya. Tekinikal bayani ba ga. Ba exploit ɗin da ake da shi. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Á wúro a wondi feere. Kama 0-day, an ndiyam a wuro be $0-$5k. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a hokkata. Vulnerability ɗin nan kuma an rubuta shi a wasu kundin bayanan vulnerability: SecurityFocus (BID 74535). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

4 Goyarwa · 50 Datenpunkte

Furɗe	Súgá 02/22/2017 13:25	Gargadi 1/3 08/16/2020 14:24	Gargadi 2/3 07/16/2022 09:41	Gargadi 3/3 07/16/2022 09:43
software_name	FileZilla Server	FileZilla Server	Server	Server
software_version	<=0.9.50	<=0.9.50	<=0.9.50	<=0.9.50
vulnerability_risk	1	1	1	1
vulnerability_historic	0	0	0	0
cvss2_vuldb_basescore	3.5	3.5	3.5	3.5
cvss2_vuldb_tempscore	3.0	3.0	3.0	3.0
cvss2_vuldb_av	N	N	N	N
cvss2_vuldb_ci	P	P	P	P
cvss2_vuldb_ii	N	N	N	N
cvss2_vuldb_ai	N	N	N	N
cvss3_meta_basescore	4.3	4.3	4.3	4.3
cvss3_meta_tempscore	4.1	4.1	4.1	4.1
cvss3_vuldb_basescore	4.3	4.3	4.3	4.3
cvss3_vuldb_tempscore	4.1	4.1	4.1	4.1
cvss3_vuldb_av	N	N	N	N
cvss3_vuldb_ui	N	N	N	N
cvss3_vuldb_s	U	U	U	U
cvss3_vuldb_c	L	L	L	L
cvss3_vuldb_i	N	N	N	N
cvss3_vuldb_a	N	N	N	N
advisory_date	1436227200 (07/07/2015)	1436227200 (07/07/2015)	1436227200 (07/07/2015)	1436227200 (07/07/2015)
advisory_url	http://www.securitygalore.com/site3/filezilla_ftp_server_advisory	http://www.securitygalore.com/site3/filezilla_ftp_server_advisory	http://www.securitygalore.com/site3/filezilla_ftp_server_advisory	http://www.securitygalore.com/site3/filezilla_ftp_server_advisory
person_name	Amit Klein	Amit Klein	Amit Klein	Amit Klein
price_0day	$0-$5k	$0-$5k	$0-$5k	$0-$5k
countermeasure_name	Gargajiya	Gargajiya	Gargajiya	Gargajiya
upgrade_version	0.9.51	0.9.51	0.9.51	0.9.51
advisory_location	Website	Website	Website	Website
cvss2_vuldb_e	ND	ND	ND	ND
cvss2_vuldb_rl	OF	OF	OF	OF
cvss2_vuldb_rc	C	C	C	C
cvss3_vuldb_e	X	X	X	X
cvss3_vuldb_rl	O	O	O	O
cvss3_vuldb_rc	C	C	C	C
cvss2_vuldb_ac	M	M	M	M
cvss2_vuldb_au	S	S	S	S
cvss3_vuldb_ac	L	L	L	L
cvss3_vuldb_pr	L	L	L	L
software_type		File Transfer Software	File Transfer Software	File Transfer Software
source_securityfocus		74535	74535	74535
source_securityfocus_date		1430956800 (05/07/2015)	1430956800 (05/07/2015)	1430956800 (05/07/2015)
securityfocus_class		Design Error	Design Error	Design Error
securityfocus_title		FileZilla Server Remote Information Disclosure Weakness	FileZilla Server Remote Information Disclosure Weakness	FileZilla Server Remote Information Disclosure Weakness
vulnerability_cwe		CWE-200 (Bayani fitowa)	CWE-441 (kura hakki ndiyam)	CWE-441 (kura hakki ndiyam)
software_vendor			FileZilla	FileZilla
software_component			PORT Handler	PORT Handler
source_cve				CVE-2015-10003
cna_responsible				VulDB

◂ Gurɗo Gumti Gada ▸

Do you need the next level of professionalism?

Upgrade your account now!