Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Core FTP 2.0 build 653 PBSZ Unauthenticated Denial of Service
Vulnerability Description
Core FTP 2.0 build 653 contains a denial of service vulnerability in the PBSZ command that allows unauthenticated attackers to crash the service by sending a malformed command with an oversized buffer. Attackers can send a PBSZ command with a payload exceeding 211 bytes to trigger an access violation and crash the FTP server process.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Core FTP 访问控制错误漏洞
Vulnerability Description
Core FTP是一款文件传输服务器。 Core FTP 2.0 build 653版本存在访问控制错误漏洞,该漏洞源于PBSZ命令存在拒绝服务漏洞,可能导致未经验证攻击者使服务崩溃。
CVSS Information
N/A
Vulnerability Type
N/A