CVE-2019-9668

HIGH WAF: Medium

CVSS 7.5 Published: 2019-12-31

CWE-20

An issue was discovered in rovinbhandari FTP through 2012-03-28. receive_file in file_transfer_functions.c allows remote attackers to cause a denial of service (daemon crash) via a 0xffff datalen field value.

WAF Coverage Analysis

Improper Input Validation Medium WAF Coverage

OWASP: A03:2021 Injection

920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection

Affected Software

Vendor	Product	Version
rovinbhandari_ftp_project	rovinbhandari_ftp	up to 2012-03-28

References

packetstormsecurity.com (Exploit, Third Party Advisory, VDB Entry)

Back to CVE Database