Hummingbird InetD FTP Component (ftpdw.exe) Command Overflow

High Nessus Plugin ID 18402


The remote FTP server is affected by a buffer overflow vulnerability.


According to its banner, the ftpd daemon installed on the remote host is from the Hummingbird Connectivity suite and suffers from a buffer overflow vulnerability. An attacker can crash the daemon and possibly execute arbitrary code remotely within the context of the affected service.


Apply the appropriate patch referenced in the vendor advisory above.

See Also

Plugin Details

Severity: High

ID: 18402

File Name: hummingbird_ftpd_overflow.nasl

Version: $Revision: 1.15 $

Type: remote

Family: FTP

Published: 2005/05/30

Modified: 2014/05/21

Dependencies: 10092

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2005/05/18

Exploitable With

Metasploit (Hummingbird Connectivity 10 SP5 LPD Buffer Overflow)

Reference Information

CVE: CVE-2005-1815

BID: 13790

OSVDB: 16956, 16957