CVE-2007-5184 Information

Feb 14, 2021 cve

Description

Format string vulnerability in the SMBDirList function in dirlist.c in SmbFTPD 0.96 allows remote attackers to execute arbitrary code via format string specifiers in a directory name.

Reference

http://debork.se/poc/001_smbftpd.c http://osvdb.org/41385 http://secunia.com/advisories/27014 http://sourceforge.net/project/shownotes.php?release_id=543077 http://www.securityfocus.com/archive/1/481220/100/0/threaded http://www.securityfocus.com/bid/25871 http://www.vupen.com/english/advisories/2007/3311 https://exchange.xforce.ibmcloud.com/vulnerabilities/36893 https://www.exploit-db.com/exploits/4478

Share on: