NVD

Id
6265  
Name
CVE-2008-6534  
Description
Incomplete blacklist vulnerability in NULL FTP Server Free and Pro 1.1.0.7 allows remote authenticated users to execute arbitrary commands via a custom SITE command containing shell metacharacters such as "&" (ampersand) in the middle of an argument.  
Reject
 
CVSS Version
2  
CVSS Score
7.1  
Severity
High  
CVSS Base Score
7.1  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:N/AC:H/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2009-03-26  
Modified Date
2009-03-27  
Seq
2008-6534  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
36932 6265 CVE-2008-6534 http://vuln.sg/nullftpserver1107-en.html  View
36933 6265 CVE-2008-6534 7355  View
36934 6265 CVE-2008-6534 32656  View
36935 6265 CVE-2008-6534 ADV-2008-3367  View
36936 6265 CVE-2008-6534 http://www.vwsolutions.com/knowledgeBase/releaseNotes.aspx?productId=14  View
36937 6265 CVE-2008-6534 nullftpserver-site-command-execution(47099)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
44496 JVNDB-2009-005503 NULL FTP Server における任意のコマンドを実行される脆弱性 NULL FTP Server は、不完全なブラックリストにより、任意のコマンドを実行される脆弱性が存在します。 CVE-2008-6534 36647 CVE-2008-6534 6265 7.1 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005503.html 2009-03-26 2012-12-20 View