Detections
Analytics

Hummingbird Connectivity FTP Service XCWD Command Overflow

medium Nessus Plugin ID 15613

Language:

Synopsis

The remote FTP server is affected by a buffer overflow vulnerability.

Description

The remote host is running the Hummingbird Connectivity FTP server.

It was possible to shut down the remote FTP server by issuing a XCWD command followed by a too long argument.

This problem allows an attacker to prevent the remote site from sharing some resources with the rest of the world.

Solution

There is no known solution at this time.

See Also

http://connectivity.hummingbird.com/

Plugin Details

Severity: Medium

ID: 15613

File Name: hummingbird_ftp_overflow.nasl

Version: 1.21

Type: remote

Family: FTP

Published: 12/31/2004

Updated: 2/11/2022

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Low

Base Score: 3.5

Temporal Score: 3

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:N/A:P

CVSS Score Source: CVE-2004-2728

CVSS v3

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 4

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:U/RC:C

Vulnerability Information

Required KB Items: ftp/login

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 12/31/2004

Reference Information

CVE: CVE-2004-2728

BID: 11542

CWE: 119