Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Off-by-one error in the do_login_loop function in libwzd-core/wzd_login.c in wzdftpd 0.8.0, 0.8.2, and possibly other versions allows remote attackers to cause a denial of service (daemon crash) via a long USER command that triggers a stack-based buffer overflow. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
wzdftpd USER指令远程拒绝服务漏洞
Vulnerability Description
wzdftpd 0.8.2版本及其早期版本中的libwzd-core/wzd_login.c的do_login_loop函数存在Off-by-one错误,远程攻击者可以借助一个超长的USER指令造成拒绝服务(daemon 崩溃)。该指令引发一个栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A