Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in Orenosv HTTP/FTP Server 0.8.1 allow remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via long arguments to FTP commands such as MKD, RMD, or DELE, which are processed by the (1) ftp_xlate_path, (2) ftp_is_canonical, or (3) os_fn_nativize functions, or (4) a long SSI command that is processed by the parse_cmd function in cgissi.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Orenosv HTTP/FTP Server FTP命令远程缓冲区溢出漏洞
Vulnerability Description
Orenosv HTTP/FTP Server 0.8.1存在多个缓冲区溢出,远程验证用户可以 通过传给FTP命令(如MKD、RMD或DELE等由(1)ftp_xlate_path,(2)ftp_is_canonical或(3)os_fn_nativize函数执行的命令)的长参数,或者(4)由cgissi.exe内的parse_cmd函数所执行的长SSI命令,发起拒绝服务攻击(服务器崩溃)并可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A