CVE-2013-4742 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:P/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 88%

Vendor	Product	Version
netwin	surgeftp	𝑥 ≤ 2.3b1
netwin	surgeftp	2.0c:c
netwin	surgeftp	2.0d:d
netwin	surgeftp	2.0e:e
netwin	surgeftp	2.0f:f
netwin	surgeftp	2.2k1:k1
netwin	surgeftp	2.2k3:k3
netwin	surgeftp	2.2m1:m1
netwin	surgeftp	2.3a1:a1
netwin	surgeftp	2.3a2:a2
netwin	surgeftp	2.3a6:a6
netwin	surgeftp	2.3a7:a7
netwin	surgeftp	2.3a8:a8
netwin	surgeftp	2.3a9:a9
netwin	surgeftp	2.3a10:a10
netwin	surgeftp	2.3a12:a12

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://archives.neohapsis.com/archives/bugtraq/2013-07/0149.html

http://osvdb.org/95582

http://secunia.com/advisories/54188

http://www.securityfocus.com/bid/61403

https://exchange.xforce.ibmcloud.com/vulnerabilities/85922

http://archives.neohapsis.com/archives/bugtraq/2013-07/0149.html

http://osvdb.org/95582

http://secunia.com/advisories/54188

http://www.securityfocus.com/bid/61403

https://exchange.xforce.ibmcloud.com/vulnerabilities/85922