mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-08 03:27:03 +00:00
Auto-merge PR#6499
Auto-merge PR#6499
This commit is contained in:
CVE Team
GitHub
commit
564b5f9569
@ -4,14 +4,220 @@
|
||||
"data_version": "4.0",
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2015-10003",
|
||||
"ASSIGNER": "cve@mitre.org",
|
||||
"STATE": "RESERVED"
|
||||
"TITLE": "FileZilla Server PORT confused deputy",
|
||||
"REQUESTER": "cna@vuldb.com",
|
||||
"ASSIGNER": "cna@vuldb.com",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"generator": "vuldb.com",
|
||||
"affects": {
|
||||
"vendor": {
|
||||
"vendor_data": [
|
||||
{
|
||||
"vendor_name": "FileZilla",
|
||||
"product": {
|
||||
"product_data": [
|
||||
{
|
||||
"product_name": "Server",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "0.9.0"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.1"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.2"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.3"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.4"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.5"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.6"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.7"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.8"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.9"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.10"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.11"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.12"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.13"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.14"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.15"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.16"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.17"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.18"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.19"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.20"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.21"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.22"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.23"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.24"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.25"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.26"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.27"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.28"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.29"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.30"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.31"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.32"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.33"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.34"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.35"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.36"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.37"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.38"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.39"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.40"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.41"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.42"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.43"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.44"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.45"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.46"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.47"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.48"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.49"
|
||||
},
|
||||
{
|
||||
"version_value": "0.9.50"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
"problemtype": {
|
||||
"problemtype_data": [
|
||||
{
|
||||
"description": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "CWE-441 Unintended Intermediary"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
|
||||
"value": "A vulnerability, which was classified as problematic, was found in FileZilla Server up to 0.9.50. This affects an unknown part of the component PORT Handler. The manipulation leads to unintended intermediary. It is possible to initiate the attack remotely. Upgrading to version 0.9.51 is able to address this issue. It is recommended to upgrade the affected component."
|
||||
}
|
||||
]
|
||||
},
|
||||
"credit": "Amit Klein",
|
||||
"impact": {
|
||||
"cvss": {
|
||||
"version": "3.1",
|
||||
"baseScore": "4.3",
|
||||
"vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:N\/A:N"
|
||||
}
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"url": "http:\/\/www.securitygalore.com\/site3\/filezilla_ftp_server_advisory"
|
||||
},
|
||||
{
|
||||
"url": "https:\/\/vuldb.com\/?id.97203"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user