CVE-2014-1215

high

Description

Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and Windows Registry.

References

http://www.securityfocus.com/archive/1/531144/100/0/threaded

https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-1215/

Details

Source: MITRE

Published: 2018-03-20

Updated: 2018-10-09

Type: CWE-119

Risk Information

CVSS v2

Base Score: 4.6

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH